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00078992 DOCUMENT TYPE: Review 
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TITLE: A Look At SGML 

AUTHOR: McLachlan, Gordon 
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ISSN: 0986-145X 

HOMEPAGE : ht tp : / /www . hppro . com 

RECORD TYPE: Review 

REVIEW TYPE: Product Analysis 

GRADE: Product Analysis, No Rating 

Standard Generalized Markup Language (SGML) , an open vendor-neutral method 
for sharing electronic documents, allows users to structure, format, and 
place content in documents. Three important hierarchical categories 
apply to each document: a declaration (a header describing document 
formatting and SGML options), type definition (a map of individual document 
elements, such as a graphic or video clip) , and instance (the collection 
of elements that make up a viewed document). The best known SGML documents 
may be World Wide Web pages created using a SGML subset, Hypertext Markup 
Language (HTML) . Web browsers are SGML parsers that recognize HTML-coded 
documents. The power of SGML lies in its ability to use delimited data 
fields for such data as control security levels and addressing for 
e-mail. Documents can then be linked into a database management-type system 
for easier storage and retrieval. 

COMPANY NAME: Vendor Independent (999999) 
SPECIAL FEATURE: Program Listings 

DESCRIPTORS: Authoring Systems; Electronic Publishing; HTML; Hypertext; 

SGML; Web Site Design 
REVISION DATE: 20020830 
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03305419 Supplier Number: 44564254 
SECURITY CONSCIOUS 
UNIX News, p45 

April, 199 * lsh Record Type; Fulltext 

Word Count: 708 svs tem or network, 

STK ns.s .y"« 'Spirit*, Idufefon It. Bach module... 
STK runs one or .ore y ^ finds > 

Morris 'worm' in the Unix „Poit database. 

^^-SSv fated-no— V » indroate the... 
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00467032 

Xerox Corp, the latest public network entrant, aims to outmaneuver its 
rivals with advanced techniques and equipment. 

Data Communications December, 1978 p. 15-18 

. . . nodes, earth stations, leased-satellite capacity and cellular radio 
and frequency reuse techniques. XTEN's transmission path will go from a 
user station (operating at up to 256 kbit/sec) through an interface to a 
roof-top transceiver. Transmission is then made to a local (or city) node 
in the petitioned band frequency. Besides the standard store-and- forward 
service, which includes a 'transparent pipeline, 1 priority levels, 
multiple distribution, and encryption capabilities, XTEN will offer a 
teleconferencing facility, to include still-frame video , 2-way digitized 
voice, and 5-10 sec facsimile. 
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09332413 SUPPLIER NUMBER: 19161393 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

A question of symmetry? (encryption alternatives) 
Hardy, Stephen M. 

Journal of Electronic Defense, v20, nl, p42(4) 
Jan, 1997 

ISSN: 0192-429X LANGUAGE: English RECORD TYPE: Fulltext 

WORD COUNT: 2829 LINE COUNT: 00231 




that cannot be successfully contested by the message originator 
* security context: an establishment of the security level at 
which a transmission is taking place - a particularly important 
function in multilevel security environments. (2) 

Data integrity and sequence integrity can be incorporated into either 
symmetric or asymmetric... 
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05050676 E.I. No: EIP98074264144 

Title: 1 Mbs energy/security scalable encryption processor using adaptive 
width and supply 

Author: Goodman, James; Chandrakasan, Anantha P. 

Corporate Source: Massachusetts Inst of Technology, Cambridge, MA, USA 

Conference Title: Proceedings of the 1998 IEEE 45th International 
Solid-State Circuits Conference, ISSCC 

Conference Location: San Francisco, CA, USA Conference Date: 
19980205-19980207 

Sponsor: IEEE 

E.I. Conference No.: 48558 

Source: Digest of Technical Papers - IEEE International Solid-State 
Circuits Conference 1998. IEEE, Piscataway, NJ, USA, 98CH36156 . p 110-111, 
422 PAPER FA 7.2 

Publication Year: 1998 

CODEN: DTPCDE ISSN: 0193-6530 

Language: English 

Document Type: CA; (Conference Article) Treatment: T; (Theoretical) 
Journal Announcement: 9808W4 

Abstract: An energy-scalable encryption processor in which the level of 
security and energy consumed to encrypt a bit can be traded-off 
dynamically, based on demand. This processor is based on a variable-width 
quadratic residue generator (QRG) . The QRG is a cryptographically-secure 
pseudo-random bit generator. Since transmitted data streams can often be 
partitioned into different priority levels , and energy-scalable 
processor ensures that important information is protected, while 
sacrificing some security for low priority data, to reduce total system 
energy. 2 Refs. 

Descriptors: ^Digital computers; Cryptography; Security of data; Computer 
architecture 

Identifiers: Energy scalable encryption processors 
Classification Codes: 

722.4 (Digital Computers & Systems); 723.2 (Data Processing) 
722 (Computer Hardware); 723 (Computer Software) 
72 (COMPUTERS & DATA PROCESSING) 
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(c) 2003 Elsevier Eng. Info. Inc. All rts. reserv. 



03850457 E.I. No: EIP94051276823 

Title: Investigation of the throughput and delay performance of 
MP-CSMA/CD using an adaptive algorithm with 2 levels of priorities 
Author: Siew, C.K.; Er, M.H. 

Corporate Source: Nanyang Technological Univ, Singapore 

Conference Title: Proceedings of the 1993 IEEE Region 10 Conference on 
Computer, Communication, Control and Power Engineering (TENCON ! 93). Part 1 
(of 5) 

Conference Location: Beijing, China Conference Date: 19931019-19931021 
Sponsor: IEEE 

E.I. Conference No.: 20220 

Source: Proceedings of the 10th IEEE Region Conference on Computer, 
Communication, Control and Power Engineering Proc 1993 IEEE Reg 10 Conf 
Comput Commun Control Power Eng (TENCON '93) 1993. Publ by IEEE, IEEE 
Service Center, Piscataway, NJ, USA. p 492-495 

Publication Year: 1993 

ISBN: 0-7803-1233-3 

Language: English 

Document Type: CA; (Conference Article) Treatment: G; (General Review); 
T; (Theoretical) 

Journal Announcement: 9406W2 

Abstract: An approach of implementing two levels of priorities in an 
MP-CSMA/CD local area network is presented. Our method uses different 
probability of transmission for different priorities. Our simulation 
results show that it is possible to implement two levels of priority if 
the bus has 10 percent of high priority stations and the overall load does 
not exceed 0.5. (Author abstract) 3 Refs. 

Descriptors: * Local area networks; Network protocols; Algorithms; 
Adaptive systems; Data communication systems; User interfaces; 
Communication channels (information theory) ; Telecommunication traffic- 
Telecommunication control; Packet switching 

Identifiers: Throughput; Delay performance; MP-CSMA/CD local area network 
; Adaptive algorithms; Priority levels ; Distributed access control 
protocol; Medium access control; Congestion control function 

Classification Codes: 

722.3 (Data Communication, Equipment & Techniques); 722.4 (Digital 
Computers & Systems); 723.1 (Computer Programming); 723.2 (Data 
Processing); 716.1 (Information & Communication Theory); 922.1 
(Probability Theory) 

722 (Computer Hardware); 723 (Computer Software); 716 (Radar, Radio & 
TV Electronic Equipment); 922 (Statistical Methods) 

72 (COMPUTERS & DATA PROCESSING); 71 (ELECTRONICS & COMMUNICATIONS); 92 
(ENGINEERING MATHEMATICS) 
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1023241 ORDER NO: AAD88-22182 

PERFORMANCE ANALYSIS FOR HIERARCHICAL AND PRIORITY BASED METROPOLITAN 
AND LOCAL-AREA COMMUNICATION NETWORKS 

Author: TSAI, ZSE-HONG 
Degree: PH.D. 
Year: 1988 

Corporate Source/Institution: UNIVERSITY OF CALIFORNIA, LOS ANGELES ( 
0031) 

CHAIR: IZHAK RUBIN 

Source: VOLUME 4 9/07-B OF DISSERTATION ABSTRACTS INTERNATIONAL. 

PAGE 2790. 211 PAGES 
Descriptors: ENGINEERING, ELECTRONICS AND ELECTRICAL 
Descriptor Codes: 0544 

In this dissertation, hierarchical and priority based local area 
and metropolitan area network systems are considered. The local area 
networks investigated are assigned to operate in accordance with a priority 
based polling protocol, as is the case for token ring and token bus local 
area networks. Priority TDMA schemes are investigated as well. Such 
protocols are highly useful in providing multiple - access control for 
high speed integrated-services local and metropolitan area networks. In 
studying metropolitan area networks, we assume such systems to cover large 
geographical areas. We also assume that a wide-band broadcast (or 
repeater-based) communication channel is available, and is to be shared 
among a large number of users. We investigate the delay throughput 
performance of such metropolitan area networks, when double-tier network 
architectures are employed, using a polling backbone. Our performance 
results can be applied to the analysis and design of cellular radio 
networks, cable TV networks, optical-fiber networks, as well as a multitude 
of priority based local area networks. 




15/5/10 (Item 1 from file: 34) 

DIALOG <R) File 34 : SciSearch (R) Cited Ref Sci 
(c) 2003 Inst for Sci Info. All rts. reserv. 

02519392 Genuine Article!: LH713 Number of References: 20 

Title: RECOVERY MANAGEMENT FOR MULTILEVEL SECURE DATABASE -SYSTEMS 

Author(s): KANG IE; KEEFE TF 

Corporate Source: PENN STATE UNIV, DEPT ELECT & COMP ENGN/UNIV PK//PA/16802 
Journal: IFIP TRANSACTIONS A-COMPUTER SCIENCE AND TECHNOLOGY, 1993, V21, P 

225-247 
ISSN: 0926-5473 

Language: ENGLISH Document Type: ARTICLE 
Geographic Location: USA 
Subfile : SciSearch 

Journal Subject Category: COMPUTER APPLICATIONS & CYBERNETICS 

Abstract: Transactions are vital for database management systems because 
they provide transparency to concurrency and failure. For this reason, 
concurrency control and recovery are important issues in multilevel 

secure transaction processing systems. This paper examines the 
security properties of database recovery management protocols. We adopt 
an analytical approach to the problem in the sense that given a system 
described by a protocol, we attempt to determine if it is secure, 
rather than show how the system could be constructed from secure 
components. This is essential because a protocol that is inherently 
insecure can have no secure implementation. We present a model for 
transaction processing systems and a corresponding security property 
based on noninterference and demonstrate that the property is 
composable. This allows us to consider the security of each subsystem 
in the transaction processing system independently. We also present a 
recovery protocol for multiversion schedulers and show that this 
protocol is both correct and secure. The behavior of the recovery 
protocol depends only on previous actions of the same transaction. For 
this reason, we believe an untrusted implementation of the recovery 
manager may be feasible. 

Descriptors — Author Keywords: DATABASE MANAGEMENT SYSTEMS ; SECURITY AND 
PROTECTION 

Identifiers--KeyWords Plus: PRINCIPLES 

Research Fronts: 91-1456 002 (DISTRIBUTED SYSTEMS; REPLICATED DATA; 

BYZANTINE AGREEMENT; RELIABLE MULTICAST COMMUNICATION; PROTOCOL 

DESIGN) 
Cited References: 
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Dynamic audio scrambler for pay TV encoding system - modulates audio 
information with different offset signals to define different scrambling 
modes 

Patent Assignee: ZENITH ELECTRONICS CORP (ZENI ) 
Inventor: FORBES R L 

Number of Countries: 001 Number of Patents: 001 
Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 

US 4636853 A 19870113 US 83564973 A 19831221 198705 B 

Priority Applications (No Type Date) : US 83564973 A 19831221 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
US 4636853 A 9 

Abstract (Basic): US 4636853 A 

The scrambler includes an all-pass filter and a 90 degree phase 
shift circuit for supplying balanced modulators with 90 degree phase 
displaced audio information and 90 degree phase displaced carriers 
derived from the horizontal line frequency of a television receiver for 
producing a single sideband, suppressed carrier audio spectrum. A 
number of offset frequencies are derived from the horizontal line 
frequency and are used to further modulate the resultant signal to 
produce a single sideband displaced audio spectrum. 

A logic circuit selects the offset frequency (mode) in response to 
vertical interval signals, video inversion signals and audio tone or 
data signals. The final output is thus scrambled in different modes 
with different offset frequencies. A complementary unscrambling system 
is also described. 

ADVANTAGE - High level of security . 

1/4 
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Crypt key distribution system for data-base or CATV access - links 
communications unit by telephone to control centre and transmits crypt 
key by multiplex broadcast to allow access to encoded information 

Patent Assignee: MITSUBISHI CORP (MITS ) 

Inventor: MOMIKI S; SAITO M 

Number of Countries: 005 Number of Patents: 006 
Patent Family: 
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Priority Applications (No Type Date) : JP 9470643 A 19940408 

Cited Patents: l.Jnl.Ref; EP 450841; JP 62169540; US 4736422; US 5144663; 

WO 8909528 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
EP 676897 A2 E 17 H04N-007/167 

Designated States (Regional) : DE FR GB 
JP 7283809 A 9 H04L-009/06 

US 6097816 A H04L-009/00 
EP 676897 Bl E H04N-007/167 

Designated States (Regional) : DE FR GB 
DE 69530955 E H04N-007/167 Based on patent EP 676897 

Abstract (Basic) : EP 676897 A 

The data-base access or CATV system includes crypt keys to permit 
access to the information. The system has a broadcast station 
transmitting over a multiplex broadcasting system. A CATV charging 
centre provides CATV signals and performs charging. A receiving unit 
is linked to the charging centre via a telephone line. It is also 
linked to a display via on or off-line links. 

The charging station provides a viewing permit code including 
descrambling codes via the broadcast station and the receiver passes it 
to the display. 

ADVANTAGE - Supplying crypt keys even when there are many requests. 
Dwg.0/14 
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Tiered bandwidth expansion and remote authorisation function for cable 
television system - generating tier-control signal to allow subscriber 
to receive high-band tier and to allow prevent cable operator from 
denying specific tier to any customer with appropriate channel expander 
box 

Patent Assignee: ASIAN TELEVISION & COMMUNICATIONS INT LL (ASTE-N) 
Inventor: BASAWAPATNA G R; BASAWAPATNA V; SIE J J; BASAWAPATNA G 
Number of Countries: 060 Number of Patents: 003 
Patent Family: 

Applicat No Kind Date Week 
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Priority Applications (No Type Date) : US 94308922 A 19940922 
Cited Patents: GB 2089623; US 3882266; WO 9416527 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 

WO 9609723 Al E 19 H04N-007/16 

Designated States (National) : AM AT AU BB BG BR BY CA CH CN CZ DE DK EE 
ES FI GB GE HU JP KE KG KP KR KZ LK LR LT LU LV MD MG MN MW MX NO NZ PL 
PT RO RU SD SE SI SK TJ TT UA UZ VN 

Designated States (Regional) : AT BE CH DE DK ES FR GB GR IE IT KE LU MC 

MW NL OA PT SD SE SZ UG 
AU 9535847 A H04N-007/16 Based on patent WO 9609723 

CN 1161768 A H04N-007/16 Based on patent WO 9609723 

Abstract (Basic) : WO 9609723 A 

The method for providing controlled access to a tier of 
television channels transmitted over a cable television system 
(300) involves providing an access control signal (101) for governing 
access to a protected tier of the television channels, and 
transmitting a television signal (310) which includes the access 
control signal over the CATV system. 

The television signal is received at a subscriber site, and 
subscriber access is provided to all television channels in the 
protected tier only when the access control signal is detected in 
the television signal at the subscriber site. 

ADVANTAGE - Provides tiering and access security for CATV 
systems having bandwidths of approximately 450 MHz or less and which do 
not use addressable converters or decoders. Inexpensive with two 
levels of security . 
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METHOD AND DEVICE FOR CONTROLLING TRANSMISSION OF PROGRAM RELATED 
INFORMATION 



PUB . NO.: 
PUBLISHED: 
INVENTOR (s) : 
APPLICANT (S) 

APPL. NO. : 
FILED: 
INTL CLASS: 

JAPIO CLASS: 



09-224230 [JP 9224230 A] 
August 26, 1997 (19970826) 
YAMAGISHI YASUAKI 

SONY CORP [000218] (A Japanese Company or Corporation), JP 
(Japan) 

08-330990 [JP 96330990] 
December 11, 1996 (19961211) 

[6] H04N-007/16 ; H04H-001/00; H04H-001/02; H04N-007/08 ; 
H04N-007/081 

44.6 (COMMUNICATION -- Television); 44.5 (COMMUNICATION 
Radio Broadcasting ) 



ABSTRACT 

PROBLEM TO BE SOLVED: To attain the transmission control of program 
related information predicting the access tendency of viewers in the 
future by collecting viewing history information obtained corresponding to 
the viewing operations of viewers and controlling the transmission 
conditions of program related information based on that information. 

SOLUTION: Concerning an EPG system with which the program related 
information such as the titles, channels and time of multichannel 
broadcasting programs is displayed on a television monitor 115 of viewer, 
when the viewer selects a program by operating a remote controller 116 
while displaying the EPG information, that viewing history is transmitted 
through a public telephone line network to a customer management system 102 
together with charging information. Based on the collected information, a 
database center 101 instructs the improvement of density of the EPG 
information concerning a program with a high audience rating or a 
promotion program and sends that instruction to an up-link center 107 
together with the EPG information and a transmission control signal, etc. 
The center 107 improves the transmission frequency of the designated EPG 
information, superimposes it on an AV data stream sent from a program 
supplier 109 and transmits it toward a satellite 112. 
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Personalized channel provision method for television broadcast system, 
involves displaying currently broadcasted audio / video file or 
previously stored file, based on content rating table 

Patent Assignee: BALOGH S P (BALO-I) ; BRIDGES B D (BRID-I); CONNELLY J H 
(CONN-I); TRAW B (TRAW-I) 

Inventor: BALOGH S P; BRIDGES B D; CONNELLY J H; TRAW B 

Number of Countries: 001 Number of Patents: 001 

Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 

US 20030066090 Al 20030403 US 2001966676 A 20010928 200351 B 

Priority Applications (No Type Date) : US 2001966676 A 20010928 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
US 20030066090 Al 22 H04N-007/173 

Abstract (Basic) : US 20030066090 Al 

NOVELTY - The meta-data describing audio / video files currently 
broadcasted or to be broadcast by the server (103), is received. One 
of the currently broadcast files or a previously stored file 
described by the meta-data, is selected based on a content rating 
table generated responsive to previously accessed files. The selected 
data file is stored and displayed on a personalized channel. 

DETAILED DESCRIPTION - INDEPENDENT CLAIMS are also included for the 
following: 

(1) an apparatus for providing personalized channel; and 

(2) a processor-readable medium storing program for providing 
personalized channel. 

USE - For television broadcast system. 

ADVANTAGE - The best stored broadcast audio / video file is 
automatically selected for display on the personalized channel, by 
using the content rating table that is based on a user's profile and 
viewing habits. 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram of 
the broadcast system, 
server (103) 
pp; 22 DwgNo 1A/14 
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Broadcast programme processing method in cable TV, involves selecting 
parameter of desired programme based on its broadcast source, from 
equivalent parameters from different broadcast sources 

Patent Assignee: THOMSON LICENSING SA (CSFC ) 

Inventor: SCHNEI DEWEND D R 

Number of Countries: 001 Number of Patents: 001 
Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 

OS 6529526 Bl 20030304 US 9892616 P 19980713 200344 B 

US 98191056 A 19981112 

Priority Applications (No Type Date) : US 9892616 P 19980713; US 98191056 A 

19981112 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 

US 6529526 Bl 13 H04N-007/50 Provisional application US 9892616 
Abstract (Basic) : US 6529526 Bl 

NOVELTY - Packetized programme information containing a equivalent 
programme specific parameters such as programme content rating , 
caption information and text descriptive information of a desired 
programme, are received from different broadcast sources. One of the 
received programme specific parameters is selected based on its 
broadcast sources, to process the desired programme. 

USE - For processing broadcast programme in digital video and 
audio broadcast applications for terrestrial, cable TV (CATV), 
satellite, Internet or computer network systems. 

ADVANTAGE - Selected programme specific parameter comprises content 
rating that is mapped to different programme content rating system 
and used in validating authorization to access the desired programme, 
hence erroneous display of invalid and objectionable images are 
prevented reliably. 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram of 
the digital video receiver. 

pp; 13 DwgNo 1/5 
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PUB. NO.: 2001-203999 [JP 2001203999 A] 

PUBLISHED: July 27, 2001 (20010727) 
INVENTOR (s) : TAKANO ASAHARU 
APPLICANT (S) : DAINIPPON PRINTING CO LTD 
APPL. NO.: 2000-010418 [JP 200010418] 
FILED: January 19, 2000 (20000119) 

INTL CLASS: H04N-007/16 

ABSTRACT 

PROBLEM TO BE SOLVED: To easily change the setting of rating information 
and also enable only limited viewers to change the rating information. 

SOLUTION: When an IC card 5 which can be connected to a receiving 
projection device 2 and has set authentication information for confirming 
at least the bearer and rating information is connected to the receiving 
projection device 2, the projection of video sent from a program 
providing server 1 is controlled according to the rating information set 
on the IC card. 
COPYRIGHT: (C) 2001, JPO 
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DIGITAL AV DATA TRANSMISSION UNIT, DIGITAL AV DATA RECEPTION UNIT, DIGITAL 
AV DATA TRANSMISSION/ RECEPTION SYSTEM AND MEDIUM 



PUB. NO. : 
PUBLISHED: 
INVENTOR (s) 



2000-059323 [JP 2000059323 A] 
February 25, 2000 (20000225) 
NISHIMURA TAKUYA 
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10-224825 [JP 98224825] 
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10-151586 [JP 98151586], JP (Japan), June 01, 1998 (19980601) 
H04H-001/00; H04L-009/08; H04L-009/10; H04L-029/08; 
H04N-007/167 

ABSTRACT 

PROBLEM TO BE SOLVED: To appropriately perform data communication while 
being immune to forgery or alteration and considering the importance of 
data or class of a recognition method by receiving an authentication 
request and performing authentication based on one kind of authentication 
rule selected out of a means storing plural authentication rules on the 
side of transmission based on the discriminated result of a data importance 
discriminating means. 



APPLICANT (s) 
APPL. NO. : 
FILED: 
PRIORITY: 



INTL CLASS: 



SOLUTION: When an authentication requesting means 12 receives the 
authentication request, a data importance discriminating means 3 
discriminates the importance of AV data 2 to be transmitted and 
classifies them according to CGMS values. A transmission side 
authentication selecting means 6 sends the optimum authentication rule, 
which is selected out of a means 5 storing plural authentication rules 
on the side of transmission, to a digital AV reception unit TV9. At a 
digital AV transmission unit STB1, the same authentication rule as the 
selected certification rule is selected and a reception side authentication 
means 13 and a transmission side authentication means 7 mutually perform 
the authentication. When the authentication is made successful, the AV data 
2 to be transmitted are enciphered and transmitted while using a work key 
Kcol6 and the received enciphered data are deciphered by a work key Kcol7. 
COPYRIGHT: (C) 2000, JPO 
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Broadcasting and projection control system controls projecting unit 

based on setting of default rating value in integrated circuit card 

recognized by projecting unit 
Patent Assignee: DAINIPPON PRINTING CO LTD (NIPQ ) 
Number of Countries: 001 Number of Patents: 001 
Patent Family: 

Patent No Kind Date Applicat No Kind Date Week 

JP 2001203999 A 20010727 JP 200010418 A 20000119 200158 B 

Priority Applications (No Type Date): JP 200010418 A 20000119 
Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
JP 2001203999 A 5 H04N-007/16 

Abstract (Basic) : JP 2001203999 A 

NOVELTY - A server (1) multiplexes rating information with a 
video signal. A projecting unit (2) receives and projects a broadcast 

program sent by the server and compares the multiplexed rating 
information with a preset value to set a default rating value to an 
integrated circuit (IC) card. A control unit controls the projecting 
unit based on set default value. The authentication and rating 
information for confirming the authorized owner, are set in the IC card 
and is recognized by the projecting unit. 

USE - For controlling broadcast and projection of video signal 
using integrated circuit (IC) card. 

ADVANTAGE - Prevents unauthorized changing of rating information, 
by children. 

DESCRIPTION OF DRAWING (S ) - The figure shows the block diagram of 
broadcasting projection control system. (Drawing includes non-English 
language text) . 

Server (1) 

Projecting unit (2) 

pp; 5 DwgNo 1/7 
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Digital audiovisual data transmitting unit 
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Abstract (Basic) : WO 9941910 Al 

NOVELTY - Digital AV data transmitting unit includes data 
importance judging section for judging importance of digital AV data, 
etc. 

DETAILED DESCRIPTION - Digital AV data transmitting unit includes 
data importance judging section for judging importance of digital 
AV data, transmitting -side multiple authentication rule storage 
section stored with multiple kinds of authentication rules, 
transmitting-side authentication selecting section for selecting one 
kind of rules from transmitting-side multiple authentication rule 
storage section, and transmitting-side authenticating section for 
carrying out authentication based on the selected authentication rules. 
A digital AV data receiving unit includes an authentication requesting 
section for making an authentication request, a receiving side 
multiple authentication rule storage section stored with the same 
authentication rules as those stored in the transmitting-side multiple 
authentication rule storage section, a receiving-side authentication 
selecting section for selecting the preset authentication rules 
selected by the transmitting-side authentication selecting section from 
the receiving-side multiple authentication rule storage section, 
and a receiving-side authenticating section for carrying out 
authentication based on the authentication rules selected on the 
receiving side. 

INDEPENDENT CLAIMS are included for a digital AV data receiving 
unit, and a digital AV data transmitting-receiving unit. 
USE - For transmitting digital AV data. 

DESCRIPTION OF DRAWING (S) - The drawing shows a diagram to 
illustrate the digital audiovisual data transmitting and receiver 
units . 

pp; 90 DwgNo 1/15 
Title Terms: DIGITAL; AUDIOVISUAL; DATA; TRANSMIT; UNIT 
Derwent Class: W01; W02 

International Patent Class (Main) : H04H-001/00; H04N-007/16 
International Patent Class (Additional): H04L-009/00; H04L-009/08; 
H04L-009/10; H04L-029/08; H04N-007/167 



File Segment: EPI 




22/5/5 (Item 4 from file: 350) 

DIALOG (R) File 350:Derwent WPIX 
(c) 2003 Thomson Derwent . All rts. reserv. 



008519905 **Image available** 

WPI Acc No: 1991-023989/199104 

XRPX Acc No: N91-018484 

Security control method for distributed processing system - defines 
security ratings for communication between servers where no central 
controller exists 
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Designated States (Regional) : BE DE FR GB IT 
DE 69028362 E G06F-001/00 Based on patent EP 409397 

Abstract (Basic) : EP 409397 A 

A security rating has a number of factors, each with a set of 
values which describe conditions for connection to take place. Each 
server has a security rating of itself (Rl), each other server (R2) and 
of each route (R3) . If a security rating is omitted it is assumed that 
all factors and their values are possible for connection. An initiator 
specifies a required security level (LA2) from the logical 
intersection of its own rating (Rl) and the responder (R2) . If this is 
empty then connection is not possible, otherwise a further rating (LA3) 
is formed from the logical intersection of the previous rating (LA2) 
and the route rating (R3) . 

If rating R2 contains factors with only one value then the 
initiator does not trust security information with the responder. 
Otherwise a connection request is made containing the factors common to 
the ratings (r2) and (LA3) . 

ADVANTAGE - No single repository of information about security- 
levels in system. (7pp Dwg.No.2/3) 
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User authentication system for online banking, acquires reusable 
user-defined policy to define protection level for accessing of 
accounts 
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Abstract (Basic) : WO 200171961 Al 

NOVELTY - An authentication controller (208) manages the acquired 
user-defined policy for the account and credentials which define the 
protection level to access the account. A user management component 
(207) stores the acquired result and organizes the policy and 
credentials so that the credentials are reused to authenticate another 
account. An authentication server (202) uses the user-defined policy to 
authenticate account. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for 
the user authentication method. 

USE - For providing user authentication during provision of 
services or exchange of confidential information through Internet, 
during online banking and shopping, online stock-trading, personalized 
content website perusal, business-to-business and 

business-consumer-e-commerce transactions, etc., using smart cards, 
tokens, fingerprint scanners, audio /face recognition systems etc. 

ADVANTAGE - Protects confidential information available on the 
Internet and provides effective authentication of the user to Internet 
accessible application and services by acquiring a user defined policy 
defining a protection level for accessing the account. 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram of 
user authentication system. 

Authentication server (202) 

User management component (207) 

Authentication controller (208) 
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What does a V-chip really do and how does it work? 

As of 1999, all new television sets (over 13 inches / 33 cm) sold in the United States have to 
contain a V-chip. The "V" stands for "violence," and the goal of the chip is to allow parents to 
choose the level of violent TV programming that will be allowed into the home. 

The idea behind a V-chip is simple. TV shows have a signal embedded in them that gives the 
show a rating, and the chip can detect these ratings. The ratings that the FCC has settled on 
look like this: 

o TV-Y - All children can watch; zero violence or sexual content 
o TV-Y7 - For children 7 and over 

o TV-G - For general audiences; no sex, violence or inappropriate language 
o TV-PG - Parental guidance suggested 

o TV-14 - Suitable only for people over 14; some sex or violence 
o TV-MA - Suitable only for mature audiences; may contain graphic violence or sexual 
situations 

A parent can program the TV with a rating, and the TV will bOock all shows above that rating. 
So if a parent programs in the TV-Y7 rating, the TV will allow shows rated at TV-Y and TV-Y7 
but will block all other shows. 

The ratings are encoded in what is called the "line 21 data area." If you have read the article 
How Television Works , then you know about the vertical retrace signal. This signal tells the TV 
to move the electron beam from the lower right to the upper left corner of the screen. Within 
this signal are horizontal retrace signals designed to keep the horizontal retrace circuit 
synchronized. The twenty-first line of horizontal retrace embedded within the vertical retrace 
area has been designated as a data area that is controlled by a standard called XDS. All sorts 
of things go inside this data area -- such as closed captioning information and the time of day - 
- as well as ratings information. See this page for details. 

The V-chip simply decodes the line 21 data, compares it with the parent's allowed rating and 
then either blocks the signal or lets it through. 

Here are some interesting links: 

© How Television Works 

© V-Chip Home page - from the FCC 
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• Patent 4,554,584: Video and audio blanking system - A key V-chip patent 

• Patent 5,828,402: Method and apparatus for selectively blocking audio and video signals 

• V-chip information center 

• FCC Docket 

• What do movie ratings mean and who applies them? 
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A HIGH SPEED RSA PROCESSOR 
F A AJ-Tuwaijry ASK Barton 
University of Bradford. UK 



ABSTRACT 

With the explosion of electronic data communications and 
computer networks, it has become important to develop new 
ways to guarantee their security. Two techniques are available: 
the private key system (eg. DES), and the public key systems 
(e.g.RSA). 

The private key systems arc more widely used than the public 
key systems because they are Cast and easy to implement, but 
they suffer from serious disadvantages such as lower security and 
complexity in distribution of the key. Public key systems provide 
much higher security levels and no need for key distribution. 
However, their use has been limited to key distribution for the 
private key systems because they are very slow. 

This paper describes three techniques for increasing the speed 
of the central computational process in the RSA algorithm, i.e. 
modular exponentiation. Together they achieve a speed 
improvement of about 7 to 1. 



INTRODUCTION 

This paper starts with a brief description of public key cryptosys- 
tems, and in particular the RSA algorithm, emphasising its m'gh 
power but low speed. The modular exponentiation process is 
identified as the main source of time delay. Three techniques 
are d ts mss rrl Cor increasing the speed of modular exponen- 
tiation. 

Firstly, the order of examination of the bits of the exponent, 
Right-to-Left or Left-to-Right, can make a factor of two 
difference in execution time in the worst case. For a "typical" 
exponent, the improvement is 1.5 to 1. 

Secondly, a bit pair re-coding technique based on the Booth 
algorithm gives a further 56% increase in speed. 

Finally, a parallel implementation is discussed which achieves a 
further 3:1 increase in speed. 

PI mi 1C KFV CR YFTOSYSTF.MS 

The main feature which distinguishes public key from conven- 
tional cryptosystems such as DES [1] is the requirement for two 
keys rather than one. In conventional systems the same key is 
used for both encryption and decryption, and this leads to 
security problems in the distribution of keys. If an eavesdropper 
can discover the key during the process of passing it between 
transmitter and receiver, he can decipher the message. 

The concept of public key cryptosystems was developed by 
Diflie and Hellman [2] and the first practical algorithm was 
publishsed by Rivest, Shamir and Adleman (RSA) [3J. The 
encryption process uses one of the two keys, and the decryption 
process the other. One key can therefore be published, 
provided that it is computationally infeasible for an eavesdrop- 
per to calculate the secret key from the public key. 



A user wishing to send a message to user X encrypts it with X's 
public key, knowing that only X has the secret key required to 
decrypt the message. If X wants to send a "signed" message 
which could not have originated anywhere else, he encrypts it 
with his secret key. The recipient then decrypts it with X's 
public key. 

RSA AinORmfM 

A user of the RSA cryptosysiem creates his pair of keys as 
follows: 

1. Two large prime numbers, p and q, are chosen at 
random (p and q are kept secret). 

2. The modulus, N=p.q. 

3. The Euler totient function, $(N) « (p-lXq-1). 
($(N) is kept secret). 

4. A large integer, E, in the range 1 < E < *(N), and coprime 
with $(N) is chosen at random. E is the public encryp- 
tion key. 

5. The multiplicative inverse, D, of E modulo *(N) is then 
determined from D.E»l(mod *(N)). D is the secret 
decryption key. 

6. X announces the pair (E.N) as his public key, keeping 
the pair (D.N) as his secret key (p,q and «(N) must also 
be kept secret). 

Other users can then encrypt a message M using X's public key 
to produce ciphertext C which can only be decrypted by X, as 
follows. 

C = M E (mod N) 
X can decrypt the cipher text C using his secret key as follows 

M' = C° (mod N) 
Proof that NT - M is given in [31. 

The security of the RSA oryptosystem depends on the difficulty 
for the cryptoanalyst of factoring the published modulus, N [4 ). 
If the modulus can be factorised, the secret key (D.N) can be 
computed, enabling the cryptanalyst to read all private mail 
addressed to X, or forge his digital signature. 

The best available algorithms for factoring large integers have 
a running time which is proportional to exp{ln(N)Jn(ln(N))) M 
operations |4J. Assuming the computing time for one operation 
is one microsecond, and the wordlength K of N is 512 bits, the 
factorisation will take 9,755 years to complete. This is the basis 
on which the security of encryption algorithms is compared. 
The RSA algorithm offers a higher level of security than other 
cryptosystems, but at the expense of a slow operating speed, 
principally resulting from the modular exponentiation operation. 
It has therefore found application principally in secure key 
distribution for the raster conventional systems such as DES. 
The object of this presentation is to explore techniques for 
increasing the speed of the RSA implementation. 
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RSA IMPLEMENTATION 

A block diagram of the RSA processor is shown in Fig. L 
There are four K-bit registers, which are used to hold ihe 
operandi: 

modulus N 

exponent E or D 

message M or C 

result C or M\ 

A 4-bit communication/status port and a 16-bit bi-directional 
data port are used to communicate with an external 
microprocessor controller. The internal controller maintains 
device statin, controls the I/O ports and the Modular Exponen- 
tiation Logic This circuitry performs the modular arithmetic; 
and is the critical element in determining the speed of the 
device. 



MODULAR EXPONENTIATION 

An efficient algorithm for computing M E (mod N) is the ap- 
proach of repeated squaring and multiplication [5\ There are 
two procedures having different properties, depending on the 
order of examination of the bits of the exponent {4|. The Left- 
to-Right (L-R) algorithm (Fig. 2a) deals with the most sig- 
nificant bit first, while the Right-to-Left (R-L) algorithm (Fig. 
2b) deals with the least significant bit first 

Both algorithms execute K loops of the flowchart, where K is 
the number of bits in E represented as: 

E * e K , I 2'"+e lt2 2 ,M +...e l 2+e () 

One squaring operation is carried out in each loop. A further 
multiplication is performed only in those loops in which the 
exponent bit being examined, c„ is set to ONE, and not when it 
is ZERO. 

In the L-R algorithm the squaring operation must be completed 
before the multiplication, whereas in the R-L algorithm both 
operations can take place in parallel, see Figs. 3a and 3b. If the 
time taken to perform one multiplication is T, the time for a K- 
bit modular exponentiation is given by 

Tlr = (K+ Ei)T (L-R) 

V - KT (R-L) 

where E, is the number of ONEs in E The R-L algorithm is 
seen to be faster, but at the expense of needing to perform two 
multiplications in parallel i.e. needing extra hardware. 

If the choice of E is restricted to values with a small number of 
ONEs, the speed penalty of the L-R algorithm is small 
However, a similar restriction applied to D would lead to a very 
limited choice of keys, and consequent reduced security. If no 
restrictions are placed on E,, the L-R algorithm can take up to 
twice as long as the R-L. On average, E, will be equal to K/2, 
and the L-R algorithm will be 50% slower than R-L. A further 
disadvantage of L-R is thai the processing speed is dependent 
on the choice of E. For the present appliearion, where speed is 
more important that complexity, the R-L algorithm has been 
chosen. 



MODULAR Ml TITfPT JCATfON 

The time, T, taken for each operation is largely determined by 
the multipliers. Modular multiplication can be performed by 
integer multiplication of two K-btt numbers, followed by modulo 
reduction of the resulting 2K-btt number. The process of 
modulo reduction can be very tmie-consuming if performed at 
the end in this way. Multiplication can be executed significantly 
faster if modulo reduction is performed at each step of the 
multiplication process, so that the result never grows beyond 
K+l bits. This technique, known as concurrent modular 
multiplication, also minimises storage space. 

A flowchart for the conventional concurrent algorithm is given 
in Fig. 4. The K-bit multiplier. A, is represented as: 

The multiplicand, B, and modulus, N, are also assumed to be K- 
bit words. K loops are required. In each loop the partial 
product P is multiplied by two and reduced modulo N, and the 
next bit is examined. If this is a ONE, then B is added to P and 
the result reduced modulo N. This means that modulo N 
reduction is always performed before P can possibly be greater 
than 2N, and hence involves only subtraction of N if P> N, or no 
operation if P<N. The time taken for a K-bit multiplication is 
Tj = Kij, where t, is the loop time for the conventional 
algorithm. A minimum value of t, has been found to be 7t, 
where t is the dock cycle period. At a 10MHz clock rate, 
t, » 700ns. 

A modified concurrent algorithm based on bit-pair re-coding, 
which is derived from the Booth technique, can give a significant 
reduction in processing time for only a marginal increase in 
complexity [6,7]. The flowchart of the modified concurrent 
algorithm is shown in Fig. 5. 

The partial product is multiplied by four in each loop (mu- 
ltiplied by two and modulo reduced twice), and the bit pointer. 

1, moved two positions. The number of loops is therefore 
reduced to K/2, le. half that of the conventional algorithm, and 
the time required for a K-bit multiplication is T : = tj K/2, 
where t 2 is the loop time for the modified algorithm. In each 
loop three bits are examined: a*, a^, and a^. The last of these 
will be re-examined as a, in the next loop when i is reduced by 

2. Thus even-numbered bits are examined twice. An extra LSB, 
a.,, assumed to be zero, is included for the final loop, as shown 
below: 

*K1 a K-3 *IW a K-< a K-5 — a l ^ ( a -l) 



The action io the rest of the loop is to add zero, ±B or ±2B to 
the partial product, depending on the state of the three bits, 
according to Table 1. 



Table 
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The values of -B (rood N) and ±2B (mod N) arc pre-computed 
once for the entire calculation, so that only a single modulo 
reduction process is required at the end of the loop. The 
minimum number of dock cydes required to perform this loop 
has been calculated as 4 « 9t. Le. 900ns at 10MHz clock rate. 
For K = 512 bits, a standard implementation, the conventional 
and wt^rHfi^rf algorithms can be compared as follows: 

T, = 512 x 700 ns = 35&4ys 

T, - 512 x 900/2 ns « 230.4ms 

The modified algorithm thus offers a 56% speed improvement 
at a cost of an increase in hardware complexity of about 109b. 

PARA1J£L IXffT.FMFNTATTON 

A further significant improvement in speed is achieved by the 
use of a parallel implementation, as shown in Figure 7. The K- 
bit multiplier is partitioned into J equal segments of K/J bits 
each, shown as A^, to A, These are each multiplied by B in a 
conventional or modified multiplier as described above. This 
takes: 

T, ° t, K/J (conventional) 

t 2 K/2J (modified) dock cydes 

i.e. the time is reduced by a factor of J compared to the serial 
approach. 

The required result is given by: 

A.B = 20-WA^B + 2*"*%^ + + 

The outputs of the J multipliers are combined by a network of 
shift/subtract elements (SS) and add/subtract elements (AS). 
The SS elements shift the data K/J bits to the left, subtracting 
N from the total after each shift, as needed. The total delay 
through all the (J-l) rows of SS elements is T s - (J-DK/J dock 
periods. 



The time required for a 512 bit modular exponentiation using 
the (R-L) algorithm is therefore 

{ 459,776t «= 46ms (conventional) 
v mj856t = 38ms (modified) 

The data rate which can be supported with a 10MHz dock rate 
is 

{1L1 kb/s (conventional) 
, p 13.5 kb/s (modified) 

For comparison, a serial implementation of the conventional 
modular multiplication algorithm and (L-R) exponentiation 
would take: 

T u o (K+EJT, = (K + EJKt, = (512 + 256)512 x 7t 
= 2,752,5121 = 27525 ms 
The data rate supported with a 10MHz dock rate is therefore 

K/(K+E|)T, = 1.86 kb/s 
i.e, a factor of 728 slower. 



CONCLUSIONS 

This paper has discussed three techniques for increasing the 
speed of the modular exponentiation which is the core of the 
RSA public key cryptography algorithm. They are: 

1. Right'to-Left exponentiation algorithm. 

2. Modified (bit-pair) modular multiplication. 

3. Parallel processing. 

Taken together, the three techniques offer a speed improvement 
of about 7:1 over the conventional, Left-to- Right, serial 
approach. 



After each row, one of the segments has been shifted sufficiently 
and is added to the running total in an add/subtract element 
(AS). The delay through each of these is T A = 2t, so this 
operation is completed before the next row of SS elements 
produces an output. Only the final AS element contributes to 
the total delay, which is 

T P = Tj + T s + T A 

=f t, K/J + (J-l)t K/J + 2t (conventional) 
I t, K/2J + (J-l)t K/J + 2t (modified) 

where t is the dock period. 

Clearly T s + T A is very nearly independent of J, and only T, 
depends on J. T p reduces rapidly with J at first, levelling off to 
an asymptote of (K+2)t for large J. A point of diminhhing 
returns is reached when: 

(J-l)t = t„ i.e. J = 8 (conventional) 
(J.l)t * ij/2, i.e. J = S3 (modified) 

A value of J = 8, giving 64-bit segments, has been chosen for 
the present implementation, giving 

f 7t x 64 + 7l x 64 + 2t * 898l (conventional) 
T p * i 9t x 32 + 7t x 64 + 2t - 738i (modified) 
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Figure 2a Left-to-Righi Exponentiation Algorithm 



Figure 2b Right-to-Left Exponentiation Algorithm 
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Figure 7 Block Diagram of Parallel Implementation 



Figure 6 Block Diagram of Modified Concurrent Algorithm 
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ciphers, using the cipher keys when sending the ciphers, and using the 
decoding keys when receiving the ciphers, user authorization procedures 
are simplified. 
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English Abstract 

A recording medium stores a retail content and a superdistribution 
content that is encrypted according to a block cryptosystem. A 
superdistribution header is attached to the superdistribution content and 
encrypted according to a public key cryptosystem. The superdistribution 
header contains a decryption key used to decrypt the block cryptosystem. 
The public key cryptosystem is characterized by using a device connected 
to a communication network for decryption. The decryption is performed 
when the recording medium is loaded into the device with a fee being 
charged via the communication network. 
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Key management method for encryption communication system, involves 
generating session key and disclosure key using common key and time 
information 
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Abstract (Basic) : JP 2000075788 A 

NOVELTY - Session and disclosure keys are generated using common 
key and time information. The time information is encrypted by session 
key and is considered as execution consent information. The session key 
belongs to key storage group which is in lower order from secret 
key of transmission side user apparatus, while the disclosure key 
belongs to higher order group from that of the receiver side user 
apparatus . 

DETAILED DESCRIPTION - When the next session key is generated and 
there is no group in lower order from the execution consent 
information, the secret key of the transmission side user 
apparatus, the common key which consists of disclosure key of 
receiving side user apparatus and the time information are transmitted 
to the receiving side user apparatus and the message is encrypted using 
the session key. Appending information which includes time information 
is generated and is transmitted to the receiving side user apparatus. 
INDEPENDENT CLAIMS are also included for the following: 

(a) key management method; 

(b) key management apparatus; 

(c) program for key management 

USE - For encryption communication system. 

ADVANTAGE - The number of system T required for decoding in each 
hierarchy can be set-up independently. Comparison of appending 
information is not needed at the receiving side. 
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Relational database system for encryption of individual data elements, in 
which each data element which is to be protected is assigned an attribute 
indicating level of encryption needed 
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Abstract (Basic) : EP 1207443 A2 

NOVELTY - Several different encryption processes are carried out 
utilizing categories master keys like data encryption keys , key 
encryption keys held in encryption devices. The higher security 
level process utilizes a tamper- proof hardware device to a higher 
degree compared to lower security level process. Each data element 
which-. i-s~ to_be_protec_ted .is .assigned an attribute indica'fingr'the level 
of encr y pt ionj needed. ~* " 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for a 
method of encryption of individual data elements. 

USE - For encryption of individual data elements. 

ADVANTAGE - Improves flexibility and overall performance in 
encryption data while reducing load on tamper-proof hardware device. 

DESCRIPTION OF DRAWING (S) - The figure shows the schematic view of 
the relational database system. 
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Data administration method for electronic data stored in magnetic disk, 
floppy disk, DVD, involves embedding consent information containing 
information on encryption key in header data section as electronic 
watermark 
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Abstract (Basic) : US 20020059522 Al 

NOVELTY - A header data section (16) is prepared for visual or 
auditory recognition of digital content attributes. A consent 
information (13) added to section (16) containing consent data on an 
encryption key in encrypting digital content is embedded in section 
(16) as an electronic watermark. A composite data is prepared in which 
a real data section (15) and consent data added header data section are 
composited, thereby distributing composite data. 

USE - For data administration in computer program and in electronic 
publication and for electronic data stored on magneto optical disk, 
digital video disk, floppy disk, mini disk, etc. \ 

ADVANTAGE - The digital content high in security request is 
encrypted by using the encryption key to maintain the security effect 
and the digital content low in the security request omits the 
encrypting, whereby a reduction in period of time for producing the 
synthetic data at that time of distribution and reduction in period of 
time for starting at the time of using can be made. 

DESCRIPTION OF DRAWING (S) - The figure shows the block diagram 
explaining the data administration method. 

Consent information (13) 

Real data section (15) 

Header data section (16) 
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Abstract (Basic) : EP 984630 Al 

NOVELTY - A decryption device (1)/ made as a smart card, has a very 
high security and holds a secret key for decryption. A second 
decryption device (2) has a lower security such as a personal 
computer. A received message is divided into blocks (3) . The first 
block is sent to the first device and is decrypted and a clear text 
output is sent to the second block and is used as an initialization 
vector for an error-propagating block chaining method to decrypt the 
other blocks. 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for a 
method of distributing data within a system with a number of receivers 
and includes encrypting several blocks using a first encrypted block as 
an input vector to a block chaining method and distributing the first 
key in an encrypted message to the receivers. 

USE - The decryption system is used for a broadcast data 
communication system such as pay-TV. 

ADVANTAGE - The system renders the second decryption device as 
secure as the first. It prevents piracy in a pay TV system. 

DESCRIPTION OF DRAWING (S) - The figure shows a simple schematic 
diagram of a decryption system. 

Smart card decryption device (1) 

Second decryption device (2) 

Message dividing device (3) 
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Abstract (Basic) : US 6021203 A 

NOVELTY - High security message, decoy message, random bit 
strings and low security messages are provided and one time pad 
(OTP) keys (46) and cyphertexts (50) are produced from the 
messages. The high security and the decoy message are embedded in 
the OTP keys and cyphertexts which are transmitted over the 
communications link to receiver (44). 

DETAILED DESCRIPTION - An INDEPENDENT CLAIM is also included for 
the program for transmitting multi-level security messages. 

USE - In coercion resistant one time pad cryptosystem used with 
sending computer and receiver computer connected via communications 
link in telecommunication system. 

ADVANTAGE - The decoy message provides high security by 
allowing the sender or the receiver to reveal how the decoy message is 
hidden in the cyphertext and to reveal the key for the decoy 
message. Provides coercion resistance by facilitating the use of decoy 
messages. Provides a mechanism that can be quickly implemented with low 
computational overhead. 

DESCRIPTION OF DRAWING (S) - The figure illustrates the block 
diagram of the one time pad cryptosystem. 

Receiver (44) 

OTP keys (4 6) 
Cyphertexts ( 50 ) 
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Monitoring and control system for security of restricted areas - 
over-rides code hopping algorithm and controls system functions in 
response to reception of low security command by controller 
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Abstract (Basic) : US 5798711 A 

The system includes a controller (35) and a remote control 
transmitter (25) which transmits system command comprising a code word 
with a fixed position word and a hopping word to the controller. The 
fixed position word has an identification code for controlling the 
controller and a channel code for issuing high and low security 
commands to the controller. The ID code is programmed in the 
controller. 

A hopping algorithm is used for modifying the hopping code n- 
times in response to n-times activation of the transmitter and 
modifying hopping word m-times within the controller on receiving the 
code word from the transmitter. A bypass mode is set for bypassing the 
code hopping algorithm and for controlling system functions when 
controller receives low security command. 

ADVANTAGE - Prevents cross-wording between format words and code 
words . 

Dwg.1/10 



Title Terms: MONITOR; CONTROL; SYSTEM; SECURE; RESTRICT; AREA; RIDE; CODE; 

HOP; ALGORITHM ; CONTROL; SYSTEM; FUNCTION; RESPOND; RECEPTION; LOW; 

SECURE; COMMAND; CONTROL 
Derwent Class: T01; W05 

International Patent Class (Main): G06F-007/04; G08C-017/02 
File Segment: EPI 

Manual Codes (EPI/S-X) : T01-E04; T01-J12C; T01-S01C; W05-C03; W05-D04A1; 

W05-D05B 
? tl4/9/31,35 



14/9/31 (Item 31 from file: 350) 

DIALOG (R) File 350: Derwent WPIX 
(c) 2004 Thomson Derwent. All rts. reserv. 



004623057 

WPI Acc No: 1986-126400/198620 

Related WPI Acc No: 1991-081782 

XRPX Acc No: N86-093434 

Magnetic card issuing method - using machine including card reader, 
keyboard and memory allowing issue of cards in response to entry of 
secret code 

Patent Assignee: OMRON TATEISI ELECTRONICS CO (OMRO ) 
Inventor: ITO H; TAKAHASHI H; TSUCHIDA K; UEMURA Y 
Number of Countries: 012 Number of Patents: 004 
Patent Family: 



Patent No 


Kind 


Date 


Applicat No 


Kind 


Date 


Week 


EP 180948 


A 


19860514 


EP 85113991 


A 


19851104 


198620 


US 4912310 


A 


19900327 


US 88157136 


A 


19880210 


199018 


EP 180948 


B 


19911218 








199151 


DE 3584946 


G 


19920130 








199206 



Priority Applications (No Type Date): JP 84233491 A 19841105; JP 84233492 A 
19841105; JP 84233493 A 19841105; JP 84233494 A 19841105 

Cited Patents: A3... 8744; FR 2370308; GB 2118614; No-SR.Pub; US 4213118; US 
4283710 

Patent Details: 

Patent No Kind Lan Pg Main IPC Filing Notes 
EP 180948 A E 132 

Designated States (Regional) : AT BE CH DE FR GB IT LI LU NL SE 
EP 180948 B 

Designated States (Regional): AT BE CH DE FR GB IT LI LU NL SE 

Abstract (Basic) : EP 180948 A 

The method includes use of a machine having a memory in which an 
initial secret code is stored. The machine further includes a card 
reader, and a keyboard . The method check whether a secret code keyed 
in by the user matches that which has been initially stored in memory. 
A card code is stored, both in the machine's memory, and on the card, 
when a card is issued in response to the entry of a valid, checked 
code. 

USE - Dispensing magnetic, or IC/microprocessor type cards used to 
control access to locked areas. 
Dwg. 1/32 

Abstract (Equivalent) : EP 180948 B 

A method of issuing cards by using a card issuing machine including 
a memory having stored therein an initial secret code, a card reader 
(21) and a keyboard (16), the method comprising: keying in a secret 
code, checking whether said a code matches a first secret code wtih a 
first card of a specific security level when said secret codes are 
found to match, characterised in that for said first card being the 
card (GR) of the highest security level above steps are preceded by 



checking whether a secret code keyed in matches the initial secret 
code stored in the memory, storing in a memory a code keyed in for 
said first card with the card issuing machine and recording the 
associating keyed in code in the first card by the card reader to 
issue the first card when the keyed in secret code is found to match 
with said initial secret code and by keying in further data including 
said first secret code for storing it in the memory to enable the 
highest level security card to be used for issuing the cards of 
lower security level. (61pp) 

Abstract (Equivalent): US 4912310 A 

The method of issuing cards by using a card issuing machine with a 
memory with an initial secret code stored in it, a card reader and a 
keyboard , involves checking whether a secret code keyed in on the 
keyboard matches the initial secret code stored in the memory. When 
the above two secret codes are found to match, a specified secret code 
is stored into memory, the specified secret code being keyed in and 
associated a card with the card issuing machine the associating 
specified secret keyed -in code is recorded in the card by the card 
reader, and the first card is issued. 

A keyed -in secret code of the card issued is confirmed and at 
least one second-type card is issued. A second secret code of one 
second-type card issued is confirmed, one third type card is issued. 
ADVANTAGE- High security . 

Title Terms: MAGNETIC; CARD; ISSUE; METHOD; MACHINE; CARD; READ; KEYBOARD 
; MEMORY; ALLOW; ISSUE; CARD; RESPOND; ENTER; SECRET; CODE 

Derwent Class: T04 

International Patent Class (Additional) : G06F-015/30; G06K-013/00 

File Segment: EPI 

Manual Codes (EPI/S-X) : T04-B 
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07743360 **Image available** 
CERTIFYING MEDIUM CREATING DEVICE 

PUB. NO. : 2003-237262 [JP 2003237262 A] 

PUBLISHED: August 27, 2003 (20030827) 

INVENTOR(s): FUCHITA TAKASHI 

APPLICANT (s) : TOSHIBA CORP 

APPL. NO.: 2002-040423 [JP 200240423] 

FILED: February 18, 2002 (20020218) 

INTL CLASS: B42D-015/10 

ABSTRACT 

PROBLEM TO BE SOLVED: To provide a certifying medium creating device, which 
easily makes an unlocking work having a comparatively higher security 

level possible under the continuation of a work having a comparatively 

lower security level such as a data inputting work. 

SOLUTION: An ID card creating device comprises a controlling part 1 and a 
card creating device main body 2 controlled by the controlling part. In the 
work having the lower securing properties such as the data inputting 
work or the like, a personal certification is performed by inputting a full 
name and a pass word through a key board 5 of the controlling part 1, 
while, in the work having the higher securing properties such as the 
unlocking of the lock of the card creating device main body 2 or the like, 
the personal certification is performed by inputting fingerprint 



information from a certification information inputting part 9, resulting in 
performing the unlocking work of the lock of the card creating device main 
body 2 under the continuation of the data inputting work in the controlling 
part 1 . 
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05318721 Supplier Number: 48096449 (USE FORMAT 7 FOR FULLTEXT) 

Secure Electronic-Mail: Return To Sender? 

Willis, David 

Network Computing, pl08 

Nov 1, 1997 

Language: English Record Type: Fulltext 
Document Type: Magazine/ Journal; Trade 
Word Count: 2172 

... Microsoft Exchange, Eudora Pro and Netscape mailers. It uses the 

International Data Encryption Algorithm (IDEA) secret - key algorithm 
with 128-bit keys. IDEA is generally accepted to be much stronger and 
faster than Digital Encryption Standard (DES) , the most common secret 
- key algorithm . In addition, PGPmail compresses text before applying 
encryption, reducing both storage and transmission requirements. 
A. . . 
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04123229 SUPPLIER NUMBER: 15517239 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

How to keep it a secret, (data encryption methods and how they work) (PC 
Tech: Tutor) (Column) (Tutorial) 

Prosise, Jeff 

PC Magazine, vl3, nl3, p315{4) 
July, 1994 

DOCUMENT TYPE: Tutorial ISSN: 0888-8507 LANGUAGE: ENGLISH 

RECORD TYPE: FULLTEXT; ABSTRACT 

WORD COUNT: 3287 LINE COUNT: 00247 

...ABSTRACT: algorithm and a password. The XOR cipher, or Vernam cipher, 
is one of the most common single- key systems used on computers. One of 
the most secure one-key systems is the US government's Data Encryption 
Standard (DES) system. Public - key , or two-key, cryptosystems utilize a 
public encryption key and a private decryption key . This system 
makes it easy to send a message without having to send a password. . . 
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DIALOG (R) File 275: Gale Group Computer DB(TM) 
(c) 2004 The Gale Group. All rts. reserv. 

02097007 SUPPLIER NUMBER: 19656448 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

Time to spend electronic money, (e-commerce issues for businesses) 
(Internet/Web/Online Service Information) 

Kessler, Gary; Sheppard, Steve 
Network VAR, v5, n8, p65(8) 
August, 1997 

ISSN: 1082-8818 LANGUAGE: English RECORD TYPE: Fulltext; Abstract 

WORD COUNT: 5177 LINE COUNT: 004 68 



so that the same plaintext will yield different ciphertext every 



time it is encrypted. 

The most common secret key encryption scheme used today 
the data encryption standard (DES), designed by IBM in the... 

...rejected it; the use of 128-bit keys is under consideration at this 
time. Other secret key cryptography schemes in use today include 
Triple-DES (variants of DES that use either two. . . 
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Is it safe out there? (sidebar to "Secure Your Mac") (Technology 
Information) 

Beckman, Mel 

Macworld, vl3, nil, pl50(3) 
Nov, 1996 

ISSN: 0741-8 64 7 LANGUAGE: English RECORD TYPE: Fulltext; Abstract 

WORD COUNT: 2183 LINE COUNT: 00180 

... of your Web pages can initiate a secure session, quietly yet safely 

exchanging public encryption keys with a requesting browser and then 
encrypting subsequent traffic with one of three algorithms , DES ( least 
secure ), RC4-40, and RC4-128 ( most secure ). Any of these algorithms 
significantly slows Web access, so you'll only want to secure selected 
pages, such as. . . 
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02132836 SUPPLIER NUMBER: 20101068 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

Lock down your desktops and servers with the protection of Troy. (Security 
First Technologies Troy) (Software Review) (Evaluation) 

Cobb, Michael 

Databased Web Advisor, vl5, nl2, p74 (3) 
Dec, 1997 

DOCUMENT TYPE: Evaluation ISSN: 1090-6436 LANGUAGE: English 

RECORD TYPE: Fulltext; Abstract 

WORD COUNT: 1504 LINE COUNT: 00123 

... files within the cache lifetime, then Troy doesn't re-compute the 

hash value. The algorithm used to calculate the hash values also affects 
the speed and security of Troy. During installation, you can choose one of 
three algorithms : Message Digest 5 (MD5) is the default choice, the 
Secure Hash Algorithm (SHA) is the slowest but most secure , and 
Partial MD5 the fastest but least secure . 

The Troy Monitor can be set to run in either Enforce Verification or 
Advisory Verification. . . 



20/3, K/36 (Item 2 from file: 275) 
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02064281 SUPPLIER NUMBER: 19413072 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

The component war heats up. (ActiveX, Java becoming more alike) (Technology 
Information) 

Lawton, George 

Software Magazine, vl7, n5, p51(3) 
May, 1997 

ISSN: 0897-8085 LANGUAGE: English RECORD TYPE: Fulltext; Abstract 

WORD COUNT: 2053 LINE COUNT: 00164 

want to download controls that have been signed by well-established 
firms, they could set security to the highest level. On the other hand, 



if they want to download any applet, regardless of whether 
signed, they would set security at its lowest setting, 
certifying software are managed by Verisign Inc., Mountain 
spin-off of . . . 
? t20/3,k/37-38 
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01704094 SUPPLIER NUMBER: 16255880 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

Network Information Service+. (SunSoft Inc's network software for providing 
name services) (Product Announcement) 

Noor, Arshad 

UNIX Review, vl2, nil, p47(5) 
Oct, 1994 

DOCUMENT TYPE: Product Announcement ISSN: 0742-3136 LANGUAGE: 

ENGLISH RECORD TYPE: FULLTEXT; ABSTRACT 

WORD COUNT: 3062 LINE COUNT: 00235 

... both before performing any operation on the namespace. 

NIS+ authentication has three levels: 0 (the least secure ), 1, 
and 2 (the most secure ) . At level 0, there is no authentication - 
everyone has privileges to do anything in the... 

...the uid. At level 2, the authentication is the strictest. Level 2 uses 
192-bit keys with the Dif f ie-Hellmann cryptography scheme to encrypt and 
decrypt passwords over a network. The... 

20/3,K/38 (Item 4 from file: 275) 

DIALOG (R) File 275: Gale Group Computer DB(TM) 
(c) 2004 The Gale Group. All rts. reserv. 

01525654 SUPPLIER NUMBER: 12340158 (USE FORMAT 7 OR 9 FOR FULL TEXT) 

Responses to NIST's proposal. (National Institute of Standards and 

Technology) (includes related article about the digital signature standard 

specifications) (Technical) 

Communications of the ACM, v35, n7, p41{14) 
July, 1992 

DOCUMENT TYPE: Technical ISSN: 0001-0782 LANGUAGE: ENGLISH 

RECORD TYPE: FULLTEXT; ABSTRACT 

WORD COUNT: 5671 LINE COUNT: 00440 

authorities, or users with very valuable data, must use very long 
keys to achieve the highest possible security level. Other users, with 
reduced security requirements and/or more stringent performance 
requirements, will use shorter keys . Trying to make one-size-fit-all 
results either in unacceptably low security for all users (because all 
certificates will be suspect) or unacceptably poor performance for some... 
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(c) 2004 Institution of Electrical Engineers. All rts. reserv. 

6110259 INSPEC Abstract Number: B9901-6120D-040, C9901-1260C-039 

Title: Constructing identity-based key distribution systems over elliptic 
curves 

Author (s ) : Sakazaki, H.; Okamoto, E.; Mambo, M. 

Author Affiliation: Sen. of Inf. Sci., Japan Adv. Inst, of Sci. & 
Technol., Ishikawa, Japan 

Journal: IEICE Transactions on Fundamentals of Electronics, 
Communications and Computer Sciences vol.E81-A, no. 10 p. 2138-43 

Publisher: Inst. Electron. Inf. & Commun. Eng, 

Publication Date: Oct. 1998 Country of Publication: Japan 

CODEN: IFESEX ISSN: 0916-8508 

SICI: 0916-8508 (199810) E81A: 10L . 2138 : CIBD; 1-P 

Material Identity Number: P710-98011 

Language: English Document Type: Journal Paper (JP) 
Treatment: Practical (P) ; Theoretical (T) 

Abstract: A key distribution system is a system in which users securely 
generate a common key . One kind of identity-based key distribution 

system was proposed by E. Okamoto [1993] . Its security depends on the 
difficulty of factoring a composite number of two large primes like RSA 

public - key cryptosystem. Another kind of identity-based key 

distribution system was proposed by K. Nyberg and R.A. Rueppel [1993] . Its 
security depends on the difficulty of the discrete logarithm problem. On 
the other hand, Koblitz and Miller described how a group of points on an 
elliptic curve over a finite field can be used to construct a public key 

cryptosystem. In 1997, we proposed an ID-based key distribution system 
over an elliptic curve, as well as those over the ring Z/nZ. Its security 
depends on the difficulty of factoring a composite number of two large 
primes. We showed that this system over an elliptic curve is more suitable 
for the implementation than those over the ring Z/nZ. In this paper, we 
a PPly tne Nyberg-Rueppel ID-based key distribution system to an elliptic 
curve. It provides relatively small block size and high security . This 

public key distribution system can be efficiently implemented. However 
the Nyberg-Rueppel ' s scheme requires relatively large data transmission. As 
a solution to this problem, we improve the scheme. This improved scheme is 
very efficient since data transferred for the common key generation is 
reduced to half of those in the Nyberg-Rueppel 1 s scheme. (16 Refs) 
Subfile: B C 
Copyright 1998, IEE 
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6078089 INSPEC Abstract Number: B9812-6120B-095, C9812-6130S-074 
Title: Design of secure authenticated key distribution protocols 

Author(s): Xu Shengbo; Tian Jianbo; Wang Xinmei 

Author Affiliation: Sch. of Commun. Eng., Xidian Univ., Xi'an, China 
Journal: Journal of Xidian University vol.25, no. 4 p. 495-9 
Publisher: Xidian Univ, 

Publication Date: Aug. 1998 Country of Publication: China 

CODEN: XDKXEP ISSN: 1001-2400 

SICI : 1001-2400 (199808 ) 25 : 4L. 4 95 : DS AD ; 1-P 

Material Identity Number: D328-98009 

Language: Chinese Document Type: Journal Paper (JP) 
Treatment: Theoretical (T) 



Abstract: The confidentiality and authenticity of cryptology have been 
thoroughly analyzed and some rules have been proposed for designing secure 
authenticated key distribution protocols. We have analyzed the 
authentication protocol designed by R.M. Needham and M.D. Schroder (1978) 
and found its drawback according to the above rules. Finally, we have 
designed a new authenticated key distribution protocol, which has high 
security and low complexity. (10 Refs) 

Subfile: B C 

Copyright 1998, I EE 
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5992160 INSPEC Abstract Number: B9809-6120B-094 , C9809-6130S-054 

Title: The application of ID-based key distribution systems to an elliptic 
curve 

Author(s): Sakazaki, H.; Okamoto, E.; Mambo, M. 

Author Affiliation: Sch. of Inf. Sci., Adv. Inst, of Sci. & Technol . , 
Ishikawa, Japan 

Conference Title: Information Security. First International Workshop, 
ISW , 97. Proceedings p. 335-44 

Editor (s) : Okamoto, E.; Davida, G.; Mambo, M. 
Publisher: Springer-Verlag, Berlin, Germany 

Publication Date: 1998 Country of Publication: Germany xii+356 pp. 
ISBN: 3 540 64382 6 Material Identity Number: XX98-00997 

Conference Title: Information Security. First International Workshop, 
ISW'97 Proceedings 

Conference Date: 17-19 Sept. 1997 Conference Location: Ishikawa, Japan 
Language: English Document Type: Conference Paper { PA) 
Treatment: Theoretical (T) 

Abstract: A key distribution system is a system in which users securely 
generate a common keyO . One kind of identity-based key distribution 
system was proposed by Okamoto (1993) . Its security depends on the 
difficulty of factoring a composite number of two large primes like RSA 
public - key cryptosystem. Another kind of identity-based key 

distribution system was proposed by Nyberg and Rueppel (1993) . Its security 
depends on the difficulty of the discrete logarithm problem. On the other 
hand, Koblitz and Miller described how a group of points on an elliptic 
curve over a finite field can be used to construct a public key 
cryptosystem. In 1997, we proposed an ID-based key distribution system over 
an elliptic curve, as well as over a ring Z/nZ. Its security depends on the 
difficulty of factoring a composite number of two large primes. We showed 
that the system is more suitable for the implementation on an elliptic 
curve than on a ring Z/nZ. In this paper, we apply the Nyberg-Rueppel 
ID-based key distribution system to an elliptic curve. It provides 
relatively small block size and high security . This public key 
scheme can be efficiently implemented. However the scheme requires 
relatively large data transmission. As a solution to this problem, we 
improve the scheme. The improved scheme is very efficient since the data 
transferred for generation of a common key is reduced to half of the 
previous one. (14 Refs) 

Subfile: B C 

Copyright 1998, I EE 
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4801884 INSPEC Abstract Number: C9412-6130S-019 
Title: Cryptographic security: origins, development, and applications 
Author(s): Jamieson, R.; Hayes, J.B. 

Author Affiliation: Sch. of Inf. Syst., New South Wales Univ., Sydney, 
NSW, Australia 

Journal: IS Audit & Control Journal vol.3 p. 4 8-57 
Publication Date: 1994 Country of Publication: USA 
CODEN: IACJET ISSN: 0885-0445 

U.S. Copyright Clearance Center Code: 0885-0445/94/$2 . 50+25 
Language: English Document Type: Journal Paper (JP) 
Treatment: General, Review (G) 

Abstract: The article presents an overview of the origins of 
cryptography, provides some insights into the development of cryptography 
by reviewing a selection of codes and ciphers, and provides some examples 
of their use. In summary, the effectiveness of any encryption scheme 
depends on the following factors: frequency of use; communications 

security ; low error propagation; high physical lsecurity ; the 
encryption algorithm ; and adequate key management. (27 Refs) 
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4501438 

Title: Healthy security at children's hospital 

Author(s): Harowitz, S.L. 

Journal: Security Management vol.37, no. 8 p. 42-4, 4 6, 4 8 
Publication Date: Aug. 1993 Country of Publication: USA 
CODEN: SECME6 ISSN: 0145-9406 

Language: English Document Type: Journal Paper (JP) 
Treatment: Applications (A) 

Abstract: At the Children's National Medical Center, the challenges faced 
by security are as wide ranging as the problems brought to the hospital's 
doors daily by its several thousand visitors. The entire building is 
secured with a proximity card access system, chosen to replace a more 
limited magnetic stripe card system about two years ago. The access card 
system is supplemented by keypads for security research labs that work 
with infectious materials and other areas that demand extra security . 

High -resolution, low -light, pan/tilt cameras and passive infrared 
motion detectors are located in all hospital stairways, in elevator lobbies 
and at outside entrances. The electronic security system's effectiveness is 
evidenced by the decreasing number of incidents of theft and vandalism 
since it has been installed. (0 Refs) 
Subfile: D 
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01779151 INSPEC Abstract Number: B82002555 
Title: A new approach to communications security 
Author(s): Spielvogel, J. 

Conference Title: MECOM'81. 2nd Middle East Electronic Communications 
Show and Conference p. 14 pp. 

Publisher: Arabian Exhibition Management, Birmingham, UK 
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Zurich//Switzerland/ (REPRINT); ETH Zurich, Swiss Fed Inst Technol, Dept 
Comp Sci,CH-8092 Zurich//Switzerland/ 
, 1997, V1294, P307-321 

ISSN: 0302-9743 Publication date: 19970000 

Publisher: SPRINGER- VERLAG BERLIN, HEIDELBERGER PLATZ 3, D-14197 BERLIN, 

GERMANYADVANCES IN CRYPTOLOGY - CRYPTO 1 97, PROCEEDINGS 
Series: LECTURE NOTES IN COMPUTER SCIENCE 
Language: English Document Type: ARTICLE 

Abstract: Privacy amplification allows two parties Alice and Bob knowing a 
partially secret string S to extract, by communication over a public 
channel, a shorter, highly secret string S ' . Bennett, Brassard, 
Crepeau, and Maurer showed that the length of S ' can be almost equal 
to the conditional Renyi entropy of S given an opponent Eve's 
knowledge. All previous results on privacy amplification assumed that 
Eve has access to the public channel but is passive or, equivalently, 
that messages inserted by Eve can be detected by Alice and Bob. In this 
paper we consider privacy amplification secure even against active 
opponents. First it is analyzed under what conditions 

information-theoretically secure authentication is possible even though 
the common key is only partially secret. This result is used to 
prove that privacy amplification can be secure against an active 
opponent and that the size of S ' can be almost equal to Eve's 
min-entropy about S minus 2n/3 if S is an n-bit string. Moreover, it is 
shown that for sufficiently large on privacy amplification is possible 
when Eve's min-entropy about S exceeds only n/2 rather than 2n/3. 
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Information Theory and Its Applications. Constructing Identity-Based Key 
Distribution Systems over Elliptic Curves. 

SAKAZAKI H (1); OKAMOTO E (1); MAMBO M (1) 

(1) Japan Advanced Inst. Sci. And Technol., Ishikawa-ken, Jpn 

IEICE Trans Fundam Electron Commun Comput Sci (Inst Electron Inf Commun Eng) 

, 1998, VOL.E81-A,NO.10, PAGE . 2138-2143, TBL.2, REF.16 

JOURNAL NUMBER: F0699CAT ISSN NO: 0916-8508 

UNIVERSAL DECIMAL CLASSIFICATION: 621.391.037.3 681.3.02-759 
LANGUAGE: English COUNTRY OF PUBLICATION: Japan 

DOCUMENT TYPE: Journal 
ARTICLE TYPE: Original paper 
MEDIA TYPE: Printed Publication 

ABSTRACT: A key distribution system is a system in which users securely 

generate a common key . One kind of identity-based key distribution 
system was proposed by E. Okamoto 1!. Its security depends on the 
difficulty of factoring a composite number of two large primes like RSA 

public - key cryptosystem. Another kind of identity-based key 
distribution system was proposed by K. Nyberg, R.A. Rueppel 7!. Its 
security depends on the difficulty of the discrete logarithm problem. 
On the other hand, Koblitz and Miller described how a group of points 
on an elliptic curve over a finite field can be used to construct a 
public key cryptosystem. In 1997, we proposed an ID-based key 
distribution system over an elliptic curve 14!, as well as those over 
the ring Z/nZ. Its security depends on the difficulty of factoring a 
composite number of two large primes. We showed that this system over 
an elliptic curve is more suitable for the implementation than those 
over the ring Z/nZ 14 ! . In this paper, we apply the Nyberg-Rueppel 
ID-based key distribution system 7! to an elliptic curve. It provides 



relatively small block size and high security . This public key 
distribution system can be efficiently implemented. However the 
Nyberg-Rueppel ' s scheme requires relatively large data transmission. As 
a solution to this problem, we improve the scheme. This improved scheme 
is very efficient since data transferred for the common key 
generation is reduced to half of those in the Nyberg-Rueppel 1 s scheme, 
(author abst . ) 
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ITR: A Hardware /Compiler Co-Design Approach to Software Protection 

PRINCIPAL INVESTIGATOR: Simha, Rahul 

PERFORMING ORG.: George Washington University, Department of Computer 
Science, Washington, DC 20052 

PROJECT MONITOR: Landwehr, Carl E. 

SPONSORING ORG.: National Science Foundation, CNS, 4201 Wilson Boulevard 
, Arlington, Virginia 22230 

DATES: 20030901 TO 20040831 FY : 2003 FUNDS: $523,620 (500000) 
SUMMARY: ITR: A Compiler-Hardware Co-Design Approach to Software 
Protection Pi's: Rahul Simha, Bhagi Narahari, Alok Choudhary, Nasir Memon 
Abstract: The growing area of software protection aims to address the 
problems of code understanding and code tampering along with related 
problems such as authorization. This project will combine novel techniques 
in the areas of compilers, architecture, and software security to provide a 
new, efficient, and tunable approach to some problems in software 
protection. The goal is to address a broad array of research issues that 
will ultimately enable design tools such as compilers to assist system 
designers in managing the tradeoffs between security and performance. The 
main idea behind the proposed approach is to hide code sequences (keys) 
within instructions in executables that are then interpreted by supporting 
FPGA (Field Programmable Gate Array) hardware to provide both a "language" 
(the code sequences) and a "virtual machine within a machine" (the FPGA) 
that will allow designers considerable flexibility in providing software 
protection. Thus, by using long sequences and PKI to exchange a secret key 
with the FPGA while also encrypting the executable with that secret key , 
a system can be positioned at the high - security (but low -performance) 
end of the spectrum. Similarly, as will be explained in the proposal, by 
using shorter sequences and selective encryption, one can achieve 
high-performance with higher security than is possible with systems that 
rely only on obscurity. 
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The component war heats up 

Lawton, George 



Software Magazine vl7n5 PP: 51-54 May 1997 
ISSN: 0897-8085 JRNL CODE: SMG 
WORD COUNT: 1950 

...TEXT: want to download controls that have been signed by 
well-established firms, they could set security to the highest level. 
On the other hand, if they want to download any applet, regardless of 
whether it has been signed, they would set security at its lowest 
setting. The keys for certifying software are managed by Verisign Inc., 
Mountain View, Calif., a spin-off of... 

...the first place. The hacker would not necessarily even have to apply for 
their own key . As Authenticode technology grows in acceptance, it is not 
unreasonable to assume that some keys may be stolen and traded by 
hackers. They may be physically copied or electronically pilfered as they 
are sent down the Internet. It is noteworthy that the keys used by 
well-established software vendors require a physical encryption "dongle, " 
or hardware key , that plugs into the back of the PC. Since the dongle can 
be physically locked in a safe, and its absence quickly noted by the 
vendor, this system affords a higher level of security than that 
offered by applets signed by individuals. 

Java applets do not have this same... 
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...TEXT: both before performing any operation on the namespace. 

NIS+ authentication has three levels: 0 (the least secure ), 1, and 2 
(the most secure ) . At level 0, there is no authentication—everyone has 
privileges to do anything in the... 

... the uid. At level 2, the authentication is the strictest. Level 2 uses 
192-bit keys with the Dif f ie-Hellmann cryptography scheme to encrypt and 
decrypt passwords over a network. The... 
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WORD COUNT: 14387 

...TEXT: authorities, or users with very valuable data, must use very long 
keys to achieve the highest possible security level. Other users, with 



reduced security requirements and/or more stringent performance 
requirements, will use shorter keys . Trying to make one-size-fit-all 
results either in unacceptably low security for all users (because all 
certificates will be suspect) or unacceptably poor performance for some... 
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LU; MC; NL; PT; SE; TR 
INTERNATIONAL PATENT CLASS: H04L-012/28; G06F-013/00 



ABSTRACT EP 1235389 Al 

In the case that a bridge unit is connected to a network such as an 
IEEE 1394 bus, the desire of copyright holders for limitation on the 
number of apparatuses that can receive a signal cannot be met. 

The invention is characterized by providing at least one reception 
unit, or more, that receives and utilizes data requiring copyright 
protection, connected to a network and by providing a transmission unit 
20 for transmitting data requiring copyright protection to a reception 
unit by utilizing a network, wherein the transmission unit 20 has an 
authentication means 23 on the transmission side for carrying out 
authentication for a reception unit and an authentication number counting 
means 24 for counting the authentication number that is the number of the 
authentications carried out by the authentication means 23 on the 
transmission side while the reception unit has an authentication means on 
the reception side for carrying out authentication for the authentication 
means on the transmission side and wherein the above authentication 
number is limited. 

ABSTRACT WORD COUNT: 169 

NOTE: 

Figure number on first page: 0001 

LEGAL STATUS (Type, Pub Date, Kind, Text): 
Application: 020828 Al Published application with search report 

Examination: 020828 Al Date of request for examination: 20020627 

LANGUAGE ( Publication, Procedural , Application ) : English; English; Japanese 

FULLTEXT AVAILABILITY: 

Available Text Language Update Word Count 

CLAIMS A (English) 200235 3742 

SPEC A (English) 200235 29004 
Total word count - document A 3274 6 

Total word count - document B 0 
Total word count - documents A + B 327 4 6 
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pages 110 - 119 
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ABSTRACT EP 1083480 Al 

The problem to be solved is that once copyright claimed AV data is 
passed to application software, the application software can freely 
process the AV data for recording, etc., defeating the purpose of 
copyright protection. The invention provides a computer which comprises a 
system section 12 and an application software section 13, and which takes 
in copyright claimed, encrypted data via a digital interface 1 for 
processing therein, wherein the system section 12 judges that the 
application software section 13 is legitimate application software for 
the protection of copyright, and if the application software is a 
legitimate one, the system section 12 passes a key for the encrypted data 
to the application software section 13. 

ABSTRACT WORD COUNT: 116 

NOTE: 

Figure number on first page: 1 
LEGAL STATUS (Type, Pub Date, Kind, Text): 
Application: 001025 Al International application. (Art. 158(1)) 

Application: 001025 Al International application entering European 

phase 

Application: 010314 Al Published application with search report 

Examination: 010314 Al Date of request for examination: 20001208 
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INTERNATIONAL PATENT CLASS: H04N-007/16; H04L-009/00 

ABSTRACT EP 977436 Al 

A digital AV data transmitting unit comprises a data importance judging 
section for judging the importance of digital AV data, a 
transmitting-side multiple authentication rule storage section stored 
with multiple kinds of authentication rules, a transmitting-side 
authentication selecting section for selecting one kind of rules from the 
transmitting-side multiple authentication rule storage section, and a 
transmitting-side authenticating section for carrying out authentication 
based on the selected authentication rules. A digital AV data receiving 
unit comprises an authentication requesting section for making an 
authentication request, a receiving-side multiple authentication rule 
storage section stored with the same authentication rules as those stored 
in the transmitting-side multiple authentication rule storage section, a 
receiving-side authentication selecting section for selecting the 
predetermined authentication rules selected by the transmitting-side 
authentication selecting section from the receiving-side multiple 
authentication rule storage section, and a receiving-side authenticating 
section for carrying out authentication based on the authentication rules 
selected on the receiving side. 
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Figure number on first page: 1 
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Application: 
Examination: 
Application: 



991020 Al International application. (Art. 158(1)) 
20000322 Al Date of request for examination: 20000118 
991020 Al International application entering European 
phase 

LANGUAGE ( Publication, Procedural , Application) : English; English; Japanese 
FULLTEXT AVAILABILITY: 

Available Text Language Update Word Count 

CLAIMS A (English) 200005 4510 

SPEC A (English) 200005 16009 
Total word count - document A 20519 
Total word count - document B 0 
Total word count - documents A + B 20519 



15/5/4 (Item 4 from file: 348) 

DIALOG (R) File 34 8: EUROPEAN PATENTS 

(c) 2004 European Patent Office. All rts. reserv. 

01075047 

METHOD AND SYSTEM FOR DATA RECORDING / REPRODUCING, APPARATUS FOR 
RECORDING/REPRODUCING, AND MEDIA FOR RECORDING PROGRAM 

VERFAHREN UND SYSTEM ZUR AUFZE ICHNUNG /WIEDERGABE VON DATEN , VORRICHTUNG 
ZUR AUFZE ICHUNG/WIEDERGABE UNDAUFZEICHUNGSMEDIUM 

APPAREIL, PROCEDE ET SYSTEME D 1 ENREGISTREMENT / REPRODUCTION DE DONNEES , ET 
SUPPORTS D 1 ENREGISTREMENT DE PROGRAMME 

PATENT ASSIGNEE: 

MATSUSHITA ELECTRIC INDUSTRIAL CO., LTD., (216880), 1006, Ohaza Kadoma, 
Kadoma-shi, Osaka 571-8501, ( JP) , (Applicant designated States: all) 
INVENTOR: 

YAMADA, Masazumi , 6-24-10, Kinda-cho Moriguchi-shi, Osaka 570-0011, 
(JP) 

IITSUKA, Hiroyuki , 6-25-6, Kisaichi Katano-shi, Osaka 576-0033, (JP) 
GOTO, Shoichi, 5-4-204, Myokenzaka Katano-shi, Osaka 576-0021, (JP) 
TAKECHI, Hideaki Room 201 11-10, Komatsu 4-chome , Higashiyodogawa-ku, 
Osaka-shi Osaka 533-0004, (JP 
LEGAL REPRESENTATIVE: 

Schuster, Thomas, Dipl.-Phys. (52981), Grunecker, Kinkeldey, Stockmair & 
Schwanhausser Anwaltssozietat Maximilianstrasse 58, 80538 Munchen, (DE) 
PATENT (CC, No, Kind, Date) : EP 989557 Al 000329 (Basic) 

WO 9938164 990729 
APPLICATION (CC, No, Date) : EP 99900674 990125; WO 99JP292 990125 
PRIORITY (CC, No, Date): JP 9812474 980126; JP 9827572 980209 
DESIGNATED STATES: DE; FR; GB 

INTERNATIONAL PATENT CLASS: G11B-020/10; H04N-005/91 

ABSTRACT EP 989557 Al 

A data recording/reproducing method wherein encrypted digital data 
obtained by subjecting digital data to first encrypting by using a 
contents key and encrypted contents key obtained by subjecting the 
contents key to second encrypting are recorded on a recording medium, the 
encrypted digital data and the encrypted contents key, having been 
recorded, are reproduced, and the encrypted digital data is decrypted by 
using the contents key obtained by decrypting the encrypted contents key, 
thereby to obtain the digital data. 

ABSTRACT WORD COUNT: 80 

NOTE: 

Figure number on first page: 1 
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A data transfer method which eliminates erroneous operation of 
conventional devices not supporting encryption when copy-protected AV 
information is encrypted and sent on the IEEE 1394 bus. Synchronous data 
transferred through isochronous communication contains i) encryption 
identification information for indicating encryption of actual data and 
ii) actual data. Only the actual data is encrypted. Encryption 
identification information indicating encryption status of actual data in 
synchronous data is sent together with actual data from the sending 
device. A receiving device detecting encryption of actual data from this 
encryption identification information requests for decrypting information 
to the sending device. The receiving device decrypts the actual data 
using decrypting information received from the sending device according 
to this request. 
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a un certain nombre de tels dispositifs commandes par cle, chaque cle 
etant associee a un motif d'identite pour ce meme dispositif. Le 
dispositif d'acces portatif comporte un modele memorise qui comprend une 
empreinte digitale de 1 ' utilisateur autorise associe a un code de 
verification. Lorsque 1 1 utilisateur autorise applique son doigt sur le 
dispositif d'acces portatif, le code de verification est renvoye, ce qui 
permet de verifier 1 1 utilisateur . Si le dispositif d'acces recoit 
ensuite un identif icateur de dispositif commande par cle qui correspond 
a un autre identif icateur se trouvant dans la memoire, la cle d'acces 
associee est recuperee et envoyee au dispositif commande par cle pour 
autoriser l'acces a 1 ' utilisateur . 
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... it wants the access device 14 to send a verification code and receive 
a temporary key for encrypting the access keys prior to transmission 
and to send a " low security " indicator, or no security indicator, 
when it wants the access device 14 to follow the described 200 low 
security option. 

A high security option is for the access keys to be encrypted in 
the access device 14. To accomplish this option, on enrolment, as... 
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Detailed Description 

Claims 
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English Abstract 

A portable communication apparatus (1) has a man-machine interface (2-5, 
21), a controller (23), an operating system (25), a local storage device 

(24) for storing a first application (26, 27), a secure resource (29) 
which is only accessible from the operating system, and a wireless 
interface (30-32) for connecting the portable communication apparatus to 
a remote device. The man-machine interface provides interaction between a 
user of the portable communication apparatus and the first application 
when executed by the controller and the operating system. The man-machine 
interface also provides interaction between the user and a second 
application (28) originating from the remote device. The operating system 

(25) and only the operating system can provide a security indicator (22) 
through the man-machine interface (2-5, 21) . The security indicator 
represents a secure connection between the secure resource (29) and the 
one of the first and second applications (26-28), which currently uses 
the man-machine interface. 

French Abstract 

Un appareil de communication portatif (1) comprend une interface 
homme-machine (2-5, 21), un controleur (23), un systeme d 1 exploitation 
(25), et un dispositif de stockage local (24) pour le stockage d ! une 
premiere application (26, 27), une ressource protegee (29) seulement 
accessible par le systeme d 1 exploitation et une interface sans fil 
(30-32) pour la connexion de I 1 appareil de communication portatif a un 
dispositif eloigne. L' interface homme-machine permet 1 1 interaction entre 
un utilisateur de 1' appareil de communication portatif et la premiere 
application, lorsqu'elle est executee par le controleur et le systeme 
d f exploitation. L 1 interface homme-machine permet egalement 1 1 interaction 
entre 1 1 utilisateur et une deuxieme application (28) provenant du 
dispositif eloigne. Seul le systeme d'exploitation (25) peut fournir un 
indicateur de securite (22) par 1 ' intermediaire de l 1 interface 
homme-machine (2-5, 21). L'indicateur de securite represente une 
connexion protegee entre la ressource protegee (29) et une des 
applications parmi la premiere ou la deuxieme application (26-28), qui 
utilise ponctuellement 1' interface homme-machine. 
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then advantageously be 



indicated graphically as indicated by the icon 22a in Fig. 



3. Three key symbols in the icon 22a represent a high -level 
security , whereas two key symbols represent a medium-level 

security, only one key symbol represents a low -level 
security and, finally, no key symbol at all represents no 

security. 

The security indicator (22h in Fig. 7) may also... 
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English Abstract 

A scalable access filter that is used together with others like it in a 
virtual private network to control access by users at clients in the 
network to information resources provided by servers in the network. Each 
access filter use a local copy of an access control data base (3845) to 
determine whether an access request is made by a user. Each user belongs 
to one or more user groups and each information ressource belongs to one 
or more information sets. Access is permitted or denied according to 
access policies which define access in terms of the user groups and 
information sets. The first access filter in the path performs the access 
check, encrypts and authenticates the request; the other access filters 
in the path do not repeat the access check. The interface used by 
applications to determine whether a user has access to an entity is now 
an SQL query. The policy server (3811) assembles the information needed 
for the response to the query from various information sources, including 
source external to the policy server. 



French Abstract 



L'invention concerne un filtre d'acces scalaire utilise avec d'autres 
filtres similaires dans un reseau prive virtuel afin de controler l'acces 
des utilisateurs a des clients du reseau pour obtenir des ressources 
d' informations fournies par des serveurs sur le reseau. Chaque filtre 
d'acces utilise une copie locale d'une base de donnees de controle 
d'acces (3845) pour determiner si la demande d'acces est effectuee par un 
utilisateur. Chaque utilisateur appartient a au moins un groupe 
d 1 utilisateurs et chaque ressource d' informations appartient a au moins 
un ensemble d' informations . L'acces est autorise ou refuse en fonction 
des politiques d'acces qui definissent l'acces en terme des groupes 
d ! utilisateurs et des ensembles d' informations . Le premier filtre d'acces 
dans la voie effectue la verification d'acces, decrypte, et authentifie 
la demande, les autres filtres d'acces dans la voie ne repetent pas la 
verification d'acces. L' interface utilisee par les applications pour 
determiner si un utilisateur a acces a une entite est alors une demande 
SQL. Le serveur de regies (3811) assemble les informations requises pour 
la reponse a la demande emanant de plusieurs sources d' informations, y 
compris une source externe audit serveur. 
Legal Status (Type, Date, Text) 

Publication 20001228 Al With international search report. 
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Fulltext Availability: 
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Detailed Description 

... the order of identification techniques. The administrator of the 

access filter likewise orders the cryptographic algorithms available in 
the VPN from most secure to least secure and relates the ordered 
trust levels to the ordered 
33 

cryptographic algorithms and orders the network paths employed in VPN 
201 and relates the ordered trust levels... 
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English Abstract 

A method of operating a security device to secure the transmission of 
data between authorized modems and against interception byA method of 
operating a security device to secure the transmission of data between 
authorized modems and against interception by an unauthorized modem. The 
modems each implement a defined protocol that includes negotiation and 
data transport portions of a communications session that is conducted 
over a network utilizing signals selectively occurring in a plurality of 
frequency channels. The security device includes a first interface 
coupleable to a modem to exchange first predetermined signals occurring 
in a first plurality of frequency channels and a second interface 
coupleable to a network to exchange second predetermined signals occuring 
in a second plurality of frequency channels. A signal processor is 
coupled between the first and second interfaces, to implement a 
bi-directional conversion of the signals between the first and second 
plurality of frequency channels by frequency shifting the first and 
second predetermined signals between the first and second pluralities of 
frequency channels. Further, the security device can provide for a first 
frequency shift of greater than a predetermined frequency tolerance 
specified by the defined protocol for a first portion of said 
communications session and a second frequency shift for a second portion 
of the communications session. 

French Abstract 

L'invention concerne un procede d 1 exploitation d'un dispositif de 
securite concu pour proteger la transmission de donnees entre des modems 
autorises et pour empecher 1 1 interception par un modem non autorise. Les 
modems mettent en oeuvre chacun un protocole qui comprend des parties de 
• negociation et de transport de donnees d'une session de communications 
menee a bien sur un reseau utilisant des signaux apparaissant 
selectivement dans plusieurs voies de frequence. Le dispositif de 
securite comporte une premiere interface pouvant etre couplee a un modem 
pour l'echange de premiers signaux predetermines apparaissant dans une 
premiere pluralite de voies de frequence, et une seconde interface 
pouvant etre couplee a un reseau pour 1 1 echange de seconds signaux 
predetermines apparaissant dans une seconde pluralite de voies de 
frequence. Un processeur de signal est couple entre les premiere et 
seconde interfaces, de sorte qu f il assure un conversion bidirectionnelle 
des signaux entre la pluralite de voies de frequence, par deplacement de 
la frequence des premiers et seconds signaux predetermines entre les 
premiere et seconde pluralites de voies de frequence. Par ailleurs, le 
dispositif de securite peut permettre un premier deplacement de frequence 
superieur a une tolerance de frequence predeterminee specifiee par le 
protocole pour une premiere partie de ladite session de communication, et 
un deuxieme deplacement de frequence pour une deuxieme partie de la 
session de communication. 
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Detailed Description 



Detailed Description 

security mode, or may operate in the clear or 
any available security mode; (3) a low -security encoding key ; and (4) 
a 

high - security key seed value. In alternate embodiments of the 
present 

invention, the code selector 1 64 may. . . 

...be supported in a preferred method of operation in 

accordance with the present invention. The low - security process path 
preferably uses a fixed security key , while the high - security 
process path includes a key exchange. In initial embodiments, the high 
- security device is not interoperable with low - security devices 
unless pre-preemptively set to emulate a low-security device by a manual 
switch. . .Also, the 

inquiry/response exchange may be expanded to allow for adaptive 
transitions between different high and low - security levels and, 
potentially, the use of different key exchange and permutation 
algorithms . Nonstandard DTMF tones, or other tones altogether, can also 
be utilized in the inquiry/response... 
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English Abstract 

A policy system includes the policy server (2617); a policy database 
(2619) which located at policy decision point (2723); the access/response 
entity (2603) ; resource server (2711) ; policy message (2725) and policy 
enforcement point (2721). System connected through public network (2702) 
or internal network (103) . The access filter (107, 203, 403) control 
access by use a local copy of an access control data base to determine 



whether an access request made by a user. Changes made by administrators 
in the local copies are propagated to all of the other local copies. 
Access is permitted or denied according to of access policies (307) which 
define access in terms of the user groups (Fig 9-12) and information sets 
(Fig 13A-18) . The rights of administrators are similarly determined by 
administrative policies (Fig 23A-C) . Access is further permitted only if 
the trust levels of the network by which is made by the sufficient access 
(Fig 25-29) . A policy server component of the access filter has been 
separated from the access filter and the policies have been generalized 
to permit administrators of the policy server to define new types of 
actions and new types of entities. Policies may now further have 
specifications for time intervals during which the policies are in force 
and the entities may be associated with attributes that specify how the 
entity is to be used when the policy applies. 

French Abstract 

La presente invention concerne un filtre d ! acces evolutif, utilise 
ensemble avec d' autres f litres semblables dans un reseau prive virtuel, 
destine a controler 1' acces, par des utilisateurs chez des clients du 
reseau, aux ressources d 1 information mises a disposition par des serveurs 
du reseau. Chaque filtre d'acces utilise une copie locale d'une base de 
donnees de controle d'acces afin de determiner si une requete d'acces est 
effectuee par un utilisateur. Des changements effectues par des 
administrateurs dans des copies locales sont propages a toutes les autres 
copies locales. Chaque utilisateur appartient a un ou a plusieurs groupes 
d 1 utilisateurs et chaque ressource d* information appartient a un ou 
plusieurs ensembles d 1 informations . Un acces est permis ou refuse selon 
des procedures d'acces qui le definissent en termes de groupes 
d' utilisateurs et d' ensembles d 1 informations . Les droits des 
administrateurs sont determines de maniere semblable par des procedures 
administratives . En outre un acces est permis seulement si les niveaux de 
confiance d ! un mode d 1 identification de 1 1 utilisateur et du chemin dans 
le reseau, par lequel est effectue 1' acces, sont suffisants en regard du 
niveau de sensibilite de la ressource d' information. Si necessaire, le 
* filtre d'acces code automat iquement la demande a l'aide d'une methode de 
codage dont le niveau de confiance est suffisant. Le premier filtre 
d'acces dans le chemin met en oeuvre, le test d'acces, code et authentifie 
la demande ; les autres f litres d'acces du chemin ne repetent pas le test 
d'acces. Un composant de serveur de procedure de filtre d'acces a ete 
separe du filtre d'acces et les procedures ont ete generalisees afin de 
permettre aux administrateurs du serveur de procedure de definir de 
nouveaux types d' actions et de nouveaux types d'entites pour lesquelles 
des procedures peuvent etre mises en place. Des procedures peuvent 
maintenant comporter, en plus, des specifications de durees pendant 
lesquelles les procedures font autorite, et les entites peuvent etre 
associees avec des attributs qui specif lent comment l'entite doit etre 
utilisee lorsque la procedure s' applique. 

Fulltext Availability: 
Detailed Description 

Detailed Description 

... the order of identification techniques. The administrator of the 

access filter likewise orders the cryptographic algorithms available in 
the VPN from most secure to least secure and relates the ordered 
trust levels to the ordered cryptographic algorithms and orders the 
network paths employed in VPN 201 and relates the ordered trust levels... 
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Detailed Description 

Claims 

Fulltext Word Count: 16115 
English Abstract 

An area monitoring and controlling system (29) ensures that the security 
of commands is maintained by employing "fixed" and "hopping" code words 
in command transmissions, and that certain functions which are executable 
from a remote transmitter (25) are assigned as " low security " and are 
executed in conjunction with a "bypass mode" to bypass the hopping 
algorithm which is necessary to execute the " high security " 
functions . 

French Abstract 

L 1 invention concerne un systeme (29) de surveillance et de controle de 
zone qui garantit que la securite des ordres est maintenue par 
1 ' utilisation de mots decode "fixe" et "de sauts" dans les transmissions 
d' ordres et que certaines fonctions qui peuvent etre executee a partir 
d'un emetteur (25) a distance sont affectees avec un critere "basse 
securite" et sont executees avec un "mode evitement" pour contourner 
l'algorithme de sauts qui est necessaire pour l 1 execution des fonctions 
"haute securite". 
Fulltext Availability: 
Claims 

English Abstract 

...and that certain functions which are executable from a remote 
transmitter (25) are assigned as " low security " and are executed in 
conjunction with a "bypass mode" to bypass the hopping algorithm which 
is necessary to execute the " high security " functions. 

Claim 

said controller, said 
identification code programmed in said controller, 



and a channel code for issuing high and low security 
commands to said controller; 

d) a hopping algorithm for modifying said hopping code 

of said transmitter n-times in response to n-times...to a system 

controller; 

b) programming said identification code within said 
controller; 

C) assigning a high security or a low security to said 
channel code; 

d) programming a hopping algorithm into said transmitter 
and said controller, each having a 0-times modified 
initial hopping word... to a system controller; 

b) programming said identification code within said 
controller; 

c) assigning a high security or a low security to said 
channel code; 

d) programming a hopping algorithm into said transmitter 
and said controller, each having a 0-times modified 
initial hopping word... 
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Main International Patent Class: G06K-009/00 
Publication Language: English 
Fulltext Availability: 

Detailed Description 

Claims 

Fulltext Word Count: 45133 
English Abstract 

A tokenless identification system and method are principally based on a 
correlative comparison of a unique biometrics sample, such as a finger 
print or voice recording, gathered directly from the person of an unknown 
user, with an authenticated biometrics sample of the same type obtained 
and stored previously (1) . It can be networked to act as a full or 
partial intermediary between other independent computer systems (3), or 
maybe the sole computer systems carrying out all necessary executions. 



French Abstract 



Un systeme et un precede d' identification sans jetons sont 
principalement fondes sur une comparaison correlative d'un echantillon 
biometrique unique, tel qu'une empreinte digitale ou un enregistrement de 
voix, obtenus directement d'un utilisateur inconnu, un echantillon 
biometrique authentifie du meme type etant obtenu et stocke au prealable 
(1). On peut le mettre en reseau de sorte qu'il serve d* intermediaire 
total ou partiel entre d'autres systeraes inf ormatiques independants (3), 
ou bien seuls les systemes informatiques effectuent toutes les operations 
necessaires . 

Fulltext Availability: 
Claims 

Claim 

initial key as a series of DES 
encrypt/decrypt/encrypt cycles to generate the transaction key . 
For additional security, two Base Key Lists are maintained, one for 

low security BIA devices and one for high security devices. The 
MDM chooses which Base Key List to use depending on the security level 
of the device. 
1 14 Database Schema... 
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PORTABLE DEVICE AND METHOD FOR ACCESSING DATA KEY ACTUATED DEVICES 
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Detailed Description 

Claims 

Fulltext Word Count: 3638 
English Abstract 

Data key actuated devices such as high security doors are modified so 
that they periodically transmit an identity pattern. An authorized user 
is provided with a portable access device storing keys for a number of 
such key actuated devices, with each key associated with an identity 
pattern for that device. The portable access device has a stored 
template comprising a fingerprint of the authorized user combined with a 
verification code. When the authorized user applies their fingerprint to 
the portable access device, the verification code is returned which 
allows verification of the user. If the access device then receives a key 
actuated device identifier matching one in storage, the associated access 
key is retrieved and transmitted to the key actuated device to allow 
access to the user. 

French Abstract 

Des dispositifs commandes par des cles de donnees, tels que des portes 
de haute securite, sont modifies de maniere a ce qu'ils envoient 
periodiquement un motif d'identite. Un utilisateur autorise est equipe 
d'un dispositif d'acces portatif qui garde en memoire des cles destinees 
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..INTERNATIONAL PATENT CLASS: G06F-001/00 

..SPECIFICATION production of pirated disks can be prevented. 

To overcome Problem 3, both a first-generation cipher with a low 
degree of security and a second-generation cipher with a high 
degree of security , each enciphering the position information with a 
digital signature, are prerecorded on a medium and. preserving 
compatibility between different generations can be obtained. Furthermore, 
a combination of three kinds of ciphers of different generations, such 
as secret key cipher , low - security public key cipher , and 
high - security public key cipher , may also be used. 

INDUSTRIAL APPLICABILITY 

As described above, in the present invention, for example... 
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An object of the present invention is to provide a marking forming 
apparatus, a method of forming a laser marking on an optical disk, a 
reproduction apparatus, an optical disk, and a method of manufacturing 
an optical disk, capable of providing a greatly improved copy prevention 
capability as compared to prior known construction. To achieve this 
object, in the optical disk of the invention, for example, a marking is 
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in original document) 
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...INTERNATIONAL PATENT CLASS: G06F-001/00 



.SPECIFICATION production of pirated disks can be prevented. 

To overcome Problem 3, both a first-generation cipher with a low 



degree of security and a second-generation cipher with a high 
degree of security , each enciphering the position information with a 
digital signature, are prerecorded on a medium and. . .preserving 
compatibility between different generations can be obtained. 
Furthermore, a combination of three kinds of ciphers of different 
generations, such as secret key cipher , low - security public 
key cipher , and high - security public key cipher , may also be 
used. 

INDUSTRIAL APPLICABILITY 

As described above, in the present invention, for example... 

...SPECIFICATION production of pirated disks can be prevented. 

To overcome Problem 3, both a first-generation cipher with a low 
degree of security and a second-generation cipher with a high 
degree of security , each enciphering the position information with a 
digital signature, are prerecorded on a medium and. . .preserving 
compatibility between different generations can be obtained. Furthermore, 
a combination of three kinds of ciphers of different generations, such 
as secret key cipher , low - security public key cipher , and 
high - security public key cipher , may also be used. 

INDUSTRIAL APPLICABILITY 

As described above, in the present invention, for example... 
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Claims 
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English Abstract 

A system to change security levels is used to change the level of 
security used in a secured processing system. The system uses a status 
indicator to designate the security level being implemented. The security 
level can be upgraded to allow a higher level of security to be 
implemented with relative ease. However, in order to change from a higher 
level of security to a lower level of security, an authorization code is 
utilized to confirm that the change in security is authorized. 

French Abstract 

La presente invention concerne un systeme permettant de modifier les 
niveaux de securisation, utilise pour modifier le niveau de securisation 
dans un systeme de traitement securise. Ce systeme utilise un indicateur 
d'etat permettant d'indiquer le niveau de securisation mis en oeuvre. On 
peut hausser le niveau de securisation de facon a permettre de mettre en 
oeuvre assez facilement un niveau de securisation plus eleve. Neanmoins, 
on utilise un code d' autorisation pour confirmer que la modification 
relative a la securisation est autorisee, lorsque l'on souhaite passer 
d'un niveau de securisation eleve a un niveau inferieur. 
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... to be compromised because it would become 1 0 secured according to a 
more secure algorithm . However, if an attacker is able to cause a shift 
to a low level of security from a high level of security , the 
attacker has made the process of breaking the code that much easier. 
Therefore, there ... value is detected, it is tested to determine whether 
it indicates a change from a low level security algorithm to a 
higher level security , algorithm (e.g., by changing from a "0" to a 
"I") 132. If this is the... from an outside source, e.g., the transmitter. 
The processor stores the code for the lower level security algorithm 

282 and code for the higher level security algorithm 278 in its 
internal memory. The Security Level Status Indicator (SLSI) 286 is stored 
in. . . 

Claim 

... authenticated and protected against a replay attack. 

18 The method of claim I wherein a lower level of security is 
nonpublic Key mode, wherein a higher level of security is a public 



Key mode, the method 
further comprising: 

continuing operation of the system in the public Key mode... 
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Claims 
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English Abstract 

A security device operates to secure the transmission of data between 
authorized modems and against interception by an unauthorized modem. The 
modems each implement a defined protocol that includes negotiation and 
data transport portions of a communications session that is conducted 
over a network utilizing signals selectively occurring in a plurality of 
frequency channels. The security device includes a first interface 
coupleable to a modem to exchange first predetermined signals occurring 
in a first plurality of frequency channels and a second interface 
coupleable to a network to exchange second predetermined signals 
occurring in a second plurality of frequency channels. A signal processor 
is coupled between the first and second interfaces, to implement a 
bi-directional conversion of the signals between the first and second 
plurality of frequency channels by frequency shifting the first and 
second predetermined signals between the first and second pluralities of 
frequency channels. Further, the security device can provide for a first 
frequency shift of greater than a predetermined frequency tolerance 
specified by the defined protocol for a first portion of said 
communications session and a second frequency shift for a second portion 
of the communications session. 

French Abstract 

L' invention concerne un dispositif de securite qu'on met en oeuvre pour 
securiser la transmission de signaux de donnees entre des modems 




autorises et empecher leur interception par un modem non autorise. Chaque 
modem met en oeuvre un protocole defini qui inclut une partie negociation 
et une partie transport dans une session de communications ouverte dans 
un reseau utilisant des signaux achemines selectivement dans plusieurs 
voies de frequence. Le dispositif de securite comprend une premiere 
interface pouvant etre couplee a un modem pour echanger une premiere 
serie de signaux predetermines achemines dans un premier groupe de voies 
de frequence, et une deuxieme interface pouvant etre reliee a un reseau 
pour echanger une deuxieme serie de signaux predetermines achemines ■ dans 
un deuxieme groupe de voies de frequence* Un processeur de signaux est 
couple entre la premiere et la deuxieme interfaces pour effectuer une 
conversion bidirectionnelle de signaux entre le premier et le deuxieme 
groupes de voies de frequence, par deplacement de la frequence de la 
premiere et de la deuxieme series de signaux predetermines entre le 
premier et le deuxieme groupes de voies de frequence. Le dispositif de 
securite peut en outre assurer, d'une part, un premier deplacement de 
frequence ayant une plus grande tolerance qu'une frequence predeterminee 
specif iee par le protocole defini d'une premiere partie de ladite session 
de communications, d' autre part, un deuxieme deplacement de frequence 
pour une deuxieme partie de la session de communications. 
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security mode, or may operate in the clear or 
any available security mode; (3) a low -security encoding key ; and (4) 
a 

high - security key seed value. In alternate embodiments of the 
present 

invention, the code selector 164 may also... 

...be supported in a preferred method of operation in 

accordance with the present invention. The low - security process path 
preferably uses a fixed security key , while the high - security 
process path includes a key exchange. In initial embodiments, the high 
- security device is not interoperable with low - security devices 
unless pre-preemptively set to emulate a low-security device by a manual 
switch. . .Also, the 

inquiry/response exchange may be expanded to allow for adaptive 
transitions between different high and low - security levels and, 
potentially, the use of different key exchange and permutation 
algorithms . Nonstandard DTMF tones, or other tones altogether, can also 
be utilized in the inquiry/response... 
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English Abstract 

A security system operates to secure the transmission of data between 
authorized modems and against interception by an unauthorized modem. The 
modems each implement a defined protocol that includes negotiation and 
data transport portions of a communications session that is conducted 
over a network utilizing signals selectively occurring in a plurality of 
frequency channels. The security device includes a first interface 
coupleable to a modem to exchange first predetermined signals occurring 
in a first plurality of frequency channels and a second interface 
coupleable to a network to exchange second predetermined signals 
occurring in a second plurality of frequency channels. A signal processor 
is coupled between the first and second interfaces, to implement a 
bidirectional conversion of the signals between the first and second 
plurality of frequency channels by frequency shifting the first and 
second predetermined signals between the first and second pluralities of 
frequency channels. Further, the security device can provide for a first 
frequency shift of greater than a predetermined frequency tolerance 
specified by the defined protocol for a first portion of said 
communications session and a second frequency shift for a second portion 
of the communications session. 

French Abstract 

Cette invention se rapporte a un systeme de securite qui fonctionne de 
facon a securiser la transmission de donnees entre des modem autorises et 
de facon a empecher 1 1 interception de ces donnees par un modem non 
autorise, Les modem appliquent chacun un protocole defini qui contient 
les parties negociation et transport de donnees d'une session de 
communication ouverte sur un reseau utilisant des signaux voyageant 
selectivement dans plusieurs canaux de frequences. Ce dispositif de 
securite utilise une premiere interface pouvant etre couplee a un modem 
pour l'echange d'un premier groupe de signaux predetermines voyageant 
dans un premier groupe de canaux de frequence et une seconde interface 
pouvant etre couplee a un reseau pour l'echange d'un second groupe de 
signaux predetermines voyageant dans un second groupe de canaux de 
frequences. Un processeur de signaux est couple entre les premiere et 
seconde interfaces, pour executer une conversion bidirectionnelle des 
signaux entre le premier et le second groupe des canaux de frequences par 
decalage de frequences des premiers et des seconds signaux predetermines 



entre les premier et second groupes de canaux de frequences. Ce 
dispositif de securite peut en outre assurer un premier decalage de 
frequence d'une tolerance de frequence superieure a une tolerance de 
frequence predeterminee, specifiee par le protocole defini pour une 
premiere partie de la session de communication et un second decalage de 
frequence pour une seconde partie de la session de communication. 
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security mode, or may operate in the clear or 
any available security mode; (3) a low -security encoding key ; and (4) 
a 

high - security key seed value. In alternate embodiments of the 
present 

1 5 invention, the code selector 164... 

...be supported in a preferred method of operation in 

accordance with the present invention. The low - security process path 
preferably uses a fixed security key , while the high - security 
process path includes a key exchange. In initial embodiments, the high 
- security device is not interoperable with low - security devices 
unless pre-preemptively set to emulate a low-security device by a manual 
switch. . .Also, the 

inquiry/response exchange may be expanded to allow for adaptive 
transitions between different high and low - security levels and, 
potentially, the use of different key exchange and permutation 
algorithms . Nonstandard DTMF tones, or other tones altogether, can also 
be utilized in the inquiry/response. . . 
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English Abstract 

Disclosed is a new and flexible approach for managing physical security 
in an electronic lock-and-key system. The novel approach does away with 
cabling or other direct connecting between locks (2) and a system 
management center. The (physical) keys (3) serve to disseminate access 
control and other information within the system in a snowball-like way, 
using an adapted, but simple networking protocol. Whenever appropriate, 
cryptographic schemes are applied to protect the system. 
French Abstract 

La presente invention concerne une nouvelle approche souple de gestion de 
la securite physique dans un systeme electronique a serrures et cles. 
Cette nouvelle approche supprime le cablage ou toute autre connexion 
directe entre des serrures (2) et un centre de gestion de systeme. Les 
cles (3) (physiques) servent a disseminer les informations de commande 
d'acces et d f autres informations dans le systeme selon un effet boule de 
neige, a I'aide d'un protocole de reseau adapte mais simple. Au besoin, 
des programmes cryptographiques sont appliques pour proteger le systeme. 
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Fulltext Availability: 
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Detailed Description 

key versus public key based architecture it should have become clear 
that, because of the key explosion problem, a shared key architecture 
is suitable only for low security applications or for small scale 
deployment, whereas high security applications or universal 
deployment both mandate public key cryptography. 

It should also have become clear that the invented flexible architecture 
for managing physical. . . 
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ABSTRACT EP 1326157 A2 

The present invention relates to digital assets which are in a secured 
form that only those with granted access rights can access. Even with the 
proper access privilege, when a secured file is classified, at least a 
security clearance key is needed to ensure those who have the right 
security clearance can ultimately access the contents in the classified 
secured file. According to one embodiment, a secured file or secured 
document includes two parts: a header, and an encrypted data portion. The 
header includes security information that points to or includes access 
rules, a protection key and a file key. The access rules facilitate 
restrictive access to the encrypted data portion and essentially 
determine who the secured document can be accessed. The file key is used 
to encrypt /decrypt the encrypted data portion and protected by the 
protection key. If the contents in the secured file are classified, the 
file key is jointly protected by the protection key as well as a security 
clearance key associated with a user attempting to access the secured 
file. 
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INTERNATIONAL PATENT CLASS: G06F-001/00 

...SPECIFICATION the key generator 244 generates keys 246 of different 
lengths or forms, each of the keys 246 corresponds to a security level, 
such as level 1 ( highest security ), level 2, level N ( lowest 

security ) . In another embodiment, each of the keys 24 6 generated by 
the key generator 24 4 is embedded with a signature signifying a 
security level. Other methods of specifying... 

...secured files classified in the same security level, it is preferable to 
permit a clearance key with a higher security level to access 
secured files classified in- the lower security levels. In other 
words, a clearance key in level 1 (i.e., the highest security level 
primarily designated to secured files classified as "top secret") can be 
used to access . . . 
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ABSTRACT EP 1120777 A2 

The invention comprises: 
an optical disk with an embossed data zone having pits and projections 
indicating data signals readable by light irradiation, and 

a barcode pattern indicating information formed on said embossed data 
zone . 

ABSTRACT WORD COUNT: 37 
NOTE: 

Figure number on first page: 1 
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Cette invention se rapport e a un support d 1 enregistrement dans lequel 
sont stockes un contenu de vente au detail et un contenu de 
superdistribution, lequel est crypte selon un systeme cryptographique de 
bloc. L'en-tete de superdistribution est attache au contenu de 
superdistribution et crypte en fonction d'un systeme cryptographique a 
cle publique. L'en-tete de superdistribution contient une cle de 
decryptage permettant de decrypter le systeme cryptographique de bloc. Le 
systeme cryptographique a cle publique se caracterise par 1 ' utilisation 
d'un dispositif connecte a un reseau de communication pour le decryptage. 
Le decryptage est realise lorsque le support d* enregistrement est charge 
dans le dispositif en question, avec un prix a payer par 1 ' intermediaire 
du reseau de communication. 

Fulltext Availability: 
Detailed Description 

Detailed Description 

56-bit encryption key and the DES algorithm. 

Here, the RSA encryption algorithm is a public key system 
that provides higher security than the DES encryption 
algorithm which is a common key system. Encryption keys with 
higher bit numbers ensure higher security . In this way, a 
higher_ content grade is associated with an encryption key and / 
aTT". .T - ■■- . _ . . 
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English Abstract 

The present invention describes a method for enabling users of a 
cryptosystem to agree on secret keys. In one embodiment, a trusted agent 
chooses at least one individual key for each user, with at least a 
portion of such individual key being secret. At least some of the 
individual keys are then stored in physically secure devices, and the 
pair of users i and j use their individual keys to compute a common 
secret key. In another embodiment, each trustee of a group of trustees 
chooses at least one individual key for each user, with at least some 
portion of such individual key being secret. The keys chosen by a 




sufficiently small number of such trustees, however, are insufficient for 
computing the common secret key of the users. Other hardware and software 
key exchange protocols based on these two techniques are also disclosed. 

French Abstract 

L 1 invention porte sur un procede permettant aux usagers d'un 
cryptosysteme de se mettre d' accord sur des codes secrets. Dans l'une des 
realisations, un homme de confiance choisit un code pour chacun des 
usagers, dont au moins une partie est tenue secrete. Au moins certains de 
ces codes individuels sont deposes dans des dispositifs proteges. Les 
usagers i and j utilisent alors leurs codes respectifs pour calculer un 
code secret commun. Dans une autre realisation, chacun des membres d'un 
groupe d'hommes de confiance choisit au moins un code pour chacun des 
usagers dont au moins une partie est tenue secrete. Neanmoins, les codes 
choisis par un nombre suffisamment fiable de ces hommes de confiance sont 
insuffisants pour calculer le code secret commun des usagers. Sont 
egalement exposes d'autres protocoles d'echange de codes bases sur ces 
deux techniques aussi bien au niveau du materiel que des logiciels. 

Fulltext Availability: 
Claims 

Claim 

having a pair of users i and j use their individual keys to compute a 
common secret key . 

2. The method as described in Claim 1 wherein some of the users belong 
to the individual keys of users of lower security levels contain 
substantially no useful information for computing the common secret 
key of a pair of users of higher security levels. 

4 . A method for enabling users of a cryptosystem to agree on secret 
keys , comprising the 
steps of: 

for each user, having each trustee Pound Sterling of a group. . . 
...chosen by a sufficiently small 30 number of trustees are substantially 
insufficient for computing the common secret key of the ...of a lower 
security level contain substantially no useful information for computing 
the common secret key of a pair of users of a higher 10 ...any 
subgroup of users of a lower security level are not useful for computing 
the common secret key of a pair of honest users of a higher 
security levels. 

8. A method for enabling users of a cryptosystem to agree on secret 
keys , comprising the 

steps of: 

generating at least one public key for each user by interating at 
least a conventional one-way function on at least one secret value; and 
having a common secret key for a pair of users 25 be computable 
based on information that includes one user's secret information and the 
other 1 s public key . 

9. The method as described in Claim 8 wherein some of the users belong to 
different . . . 

...The method as described in Claim 9 wherein secret information relative 
to users of a lower security level is substantially useless for 
computing the common secret key of a pair of users of a higher 
security level . 
SUBSTITUTE SHIFT (ftU 2$ 



11. A method, using secure chips, for enabling users of t of a group of 
trustees 5 generate at least one public key for each user by 
evaluating at least one conventional one-way function on at least one 
secret value; having a common secret key for a pair of users be 
computable based on information that includes 10 secret information. 12 
wherein any secret information relative to a sufficiently small group of 
users of a lower security level is substantially useless for computing 
the common secret key of a pair of users of a higher security 
level . 

14. A method for enabling users of a cryptosystem to agree on secret 
keys , comprising the 

steps of: 

generating at least one public key for each pair of users; and 
having a common secret key for a pair of users be computable based 
on information that includes 35 their own public key and their own 
secret keys . 
SUBSTITUTE SHEET (RULE 26) 

15. A method for enabling users of a cryptosystem to agree on secret 
keys, comprising the steps of: 

generating at least one common public key for 5 each pair of 
users; and 

generating at least one secret key per user; and having a common 
secret key for a pair of users be computable based on information that' 
includes the common public key for the pair of users and the 10 
secret keys of the pair of users. 

16. A method for enabling ...relative to that user generated by the 
trustees, a piece of information that includes at least one secret key 
and wherein the pieces of information generated by a sufficiently small 
number of trustees are practically insufficient to compute the common 
secret key of a pair of users.; 

generating at least one common public key for a pair of users; and 
having a common secret key for a pair of users be computable based 
on information that includes the common public key for the pair of 
users and the secret keys of the pair of users. 
35 
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